Class: OmniAuth::Strategies::LDAP

Inherits:

Object

• Object
• OmniAuth::Strategies::LDAP

Includes:

OmniAuth::Strategy

Defined in:

lib/omniauth/strategies/ldap.rb

Instance Method Summary

• #auth_hash(entry) ⇒ Object
• #callback_phase ⇒ Object
• #entry_attr(entry, key) ⇒ Object
• #initialize(app, name, host, port, base, options = {}) ⇒ LDAP constructor

  A new instance of LDAP.

• #request_phase ⇒ Object

Constructor Details

#initialize(app, name, host, port, base, options = {}) ⇒ LDAP

Returns a new instance of LDAP.

# File 'lib/omniauth/strategies/ldap.rb', line 9

def initialize(app, name, host, port, base, options = {})
  @options = options
  @base = base
  @identifier_key = options[:identifier_key] || "uid"

  @ldap = Net::LDAP.new(:host => host, :port => port)        
  if options[:username] && options[:password]
    @ldap.auth options[:username], options[:password]
  end

  super(app, name)
end

Instance Method Details

#auth_hash(entry) ⇒ Object

# File 'lib/omniauth/strategies/ldap.rb', line 44

def auth_hash(entry)
  OmniAuth::Utils.deep_merge(super(), {
    'uid' => (entry.send @identifier_key)[0],
    'strategy' => self.class.to_s,                                    
    'user_info' => {             
                                 'name' => entry_attr(entry, :name),
                                 'displayName' => entry_attr(entry, :displayName),
                                 'uid' =>  entry_attr(entry, :uid),
                                 'email' => entry_attr(entry, :mail) || entry_attr(entry, :email)
    }
  })
end

#callback_phase ⇒ Object

# File 'lib/omniauth/strategies/ldap.rb', line 58

def callback_phase
  @app.call(env)
end

#entry_attr(entry, key) ⇒ Object

# File 'lib/omniauth/strategies/ldap.rb', line 62

def entry_attr(entry, key)
  (entry.attribute_names.member?(key) && entry.send(key) && (entry.send key)[0]) || nil
end

#request_phase ⇒ Object

# File 'lib/omniauth/strategies/ldap.rb', line 23

def request_phase
  return fail!(:missing_information) unless (request[:identifier] && request[:password])
  

  result = @ldap.bind_as(:base => @base,
                         :filter => "(#{@identifier_key}=#{request[:identifier]})",
                         :password => request[:password])
  

  if result
    env['REQUEST_METHOD'] = 'GET'
    env['PATH_INFO'] = request.path + '/callback'
    request['auth'] = auth_hash(result.first)
    @app.call(env)
  else
    fail!(:invalid_credentials)
  end

end