2000-06-22 02:23:38 +08:00
|
|
|
/* group.c - ldap backend acl group routine */
|
|
|
|
/* $OpenLDAP$ */
|
|
|
|
/*
|
|
|
|
* Copyright 1998-1999 The OpenLDAP Foundation, All Rights Reserved.
|
|
|
|
* COPYING RESTRICTIONS APPLY, see COPYRIGHT file
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include "portable.h"
|
|
|
|
|
|
|
|
#include <stdio.h>
|
|
|
|
|
|
|
|
#include <ac/socket.h>
|
|
|
|
#include <ac/string.h>
|
|
|
|
|
|
|
|
#include "slap.h"
|
|
|
|
#include "back-ldap.h"
|
|
|
|
|
|
|
|
|
|
|
|
/* return 0 IFF we can retrieve the attributes
|
2001-12-25 01:06:46 +08:00
|
|
|
* of entry with ndn
|
2000-06-22 02:23:38 +08:00
|
|
|
*/
|
|
|
|
int
|
|
|
|
ldap_back_attribute(
|
|
|
|
Backend *be,
|
|
|
|
Connection *conn,
|
|
|
|
Operation *op,
|
|
|
|
Entry *target,
|
2001-12-27 20:17:28 +08:00
|
|
|
struct berval *ndn,
|
2000-06-22 02:23:38 +08:00
|
|
|
AttributeDescription *entry_at,
|
2002-01-02 19:00:36 +08:00
|
|
|
BVarray *vals
|
2000-06-22 02:23:38 +08:00
|
|
|
)
|
|
|
|
{
|
|
|
|
struct ldapinfo *li = (struct ldapinfo *) be->be_private;
|
2001-02-20 03:14:12 +08:00
|
|
|
int rc = 1, i, j, count, is_oc;
|
2000-06-22 02:23:38 +08:00
|
|
|
Attribute *attr;
|
2002-01-02 19:00:36 +08:00
|
|
|
BVarray abv, v;
|
|
|
|
struct berval mapped;
|
|
|
|
char **vs;
|
2000-06-22 02:23:38 +08:00
|
|
|
LDAPMessage *result, *e;
|
|
|
|
char *gattr[2];
|
|
|
|
LDAP *ld;
|
|
|
|
|
|
|
|
*vals = NULL;
|
2001-12-28 12:20:08 +08:00
|
|
|
if (target != NULL && target->e_nname.bv_len == ndn->bv_len &&
|
|
|
|
strcmp(target->e_nname.bv_val, ndn->bv_val) == 0) {
|
2000-06-22 02:23:38 +08:00
|
|
|
/* we already have a copy of the entry */
|
2001-02-20 03:14:12 +08:00
|
|
|
/* attribute and objectclass mapping has already been done */
|
2000-06-22 02:23:38 +08:00
|
|
|
if ((attr = attr_find(target->e_attrs, entry_at)) == NULL)
|
|
|
|
return(1);
|
|
|
|
|
2002-01-02 19:00:36 +08:00
|
|
|
for ( count = 0; attr->a_vals[count].bv_val != NULL; count++ ) { }
|
|
|
|
v = (BVarray) ch_calloc( (count + 1), sizeof(struct berval) );
|
2000-06-22 02:23:38 +08:00
|
|
|
if (v != NULL) {
|
2000-06-28 13:26:17 +08:00
|
|
|
for ( j = 0, abv = attr->a_vals; --count >= 0; abv++ ) {
|
2002-01-02 19:00:36 +08:00
|
|
|
if ( abv->bv_len > 0 ) {
|
|
|
|
ber_dupbv( &v[j], abv );
|
|
|
|
if( v[j].bv_val == NULL )
|
2000-06-22 02:23:38 +08:00
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
2002-01-02 19:00:36 +08:00
|
|
|
v[j].bv_val = NULL;
|
2000-06-22 02:23:38 +08:00
|
|
|
*vals = v;
|
|
|
|
rc = 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
2002-01-02 19:00:36 +08:00
|
|
|
ldap_back_map(&li->at_map, &entry_at->ad_cname, &mapped, 0);
|
|
|
|
if (mapped.bv_val == NULL)
|
2001-02-20 03:14:12 +08:00
|
|
|
return(1);
|
|
|
|
|
2000-06-22 02:23:38 +08:00
|
|
|
if (ldap_initialize(&ld, li->url) != LDAP_SUCCESS) {
|
|
|
|
return(1);
|
|
|
|
}
|
|
|
|
|
|
|
|
if (ldap_bind_s(ld, li->binddn, li->bindpw, LDAP_AUTH_SIMPLE) == LDAP_SUCCESS) {
|
2002-01-02 19:00:36 +08:00
|
|
|
gattr[0] = mapped.bv_val;
|
2000-06-22 02:23:38 +08:00
|
|
|
gattr[1] = NULL;
|
2001-12-27 20:17:28 +08:00
|
|
|
if (ldap_search_ext_s(ld, ndn->bv_val, LDAP_SCOPE_BASE, "(objectclass=*)",
|
2000-06-22 02:23:38 +08:00
|
|
|
gattr, 0, NULL, NULL, LDAP_NO_LIMIT,
|
|
|
|
LDAP_NO_LIMIT, &result) == LDAP_SUCCESS)
|
|
|
|
{
|
|
|
|
if ((e = ldap_first_entry(ld, result)) != NULL) {
|
2002-01-02 19:00:36 +08:00
|
|
|
vs = ldap_get_values(ld, e, mapped.bv_val);
|
2000-06-28 13:26:17 +08:00
|
|
|
if (vs != NULL) {
|
|
|
|
for ( count = 0; vs[count] != NULL; count++ ) { }
|
2002-01-02 19:00:36 +08:00
|
|
|
v = (BVarray) ch_calloc( (count + 1), sizeof(struct berval) );
|
2000-06-28 13:26:17 +08:00
|
|
|
if (v == NULL) {
|
|
|
|
ldap_value_free(vs);
|
|
|
|
} else {
|
2002-01-02 19:00:36 +08:00
|
|
|
is_oc = (strcasecmp("objectclass", mapped.bv_val) == 0);
|
2000-06-28 13:26:17 +08:00
|
|
|
for ( i = 0, j = 0; i < count; i++) {
|
2002-01-02 19:00:36 +08:00
|
|
|
ber_str2bv(vs[i], 0, 0, &v[j] );
|
2001-02-20 03:14:12 +08:00
|
|
|
if (!is_oc) {
|
2002-01-02 19:00:36 +08:00
|
|
|
if( v[j].bv_val == NULL )
|
2001-02-20 03:14:12 +08:00
|
|
|
ch_free(vs[i]);
|
|
|
|
else
|
|
|
|
j++;
|
|
|
|
} else {
|
2002-01-02 19:00:36 +08:00
|
|
|
ldap_back_map(&li->oc_map, &v[j], &mapped, 1);
|
|
|
|
if (mapped.bv_val) {
|
|
|
|
ber_dupbv( &v[j], &mapped );
|
|
|
|
if (v[j].bv_val)
|
|
|
|
j++;
|
2001-02-20 03:14:12 +08:00
|
|
|
}
|
2000-06-28 13:26:17 +08:00
|
|
|
ch_free(vs[i]);
|
2001-02-20 03:14:12 +08:00
|
|
|
}
|
2000-06-28 13:26:17 +08:00
|
|
|
}
|
2002-01-02 19:00:36 +08:00
|
|
|
v[j].bv_val = NULL;
|
2000-06-28 13:26:17 +08:00
|
|
|
*vals = v;
|
|
|
|
rc = 0;
|
|
|
|
ch_free(vs);
|
|
|
|
}
|
|
|
|
}
|
2000-06-22 02:23:38 +08:00
|
|
|
}
|
|
|
|
ldap_msgfree(result);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
ldap_unbind(ld);
|
|
|
|
}
|
|
|
|
|
|
|
|
return(rc);
|
|
|
|
}
|
|
|
|
|