Class: Chaltron::LDAP::Connection

Inherits:

Object

• Object
• Chaltron::LDAP::Connection

Defined in:

lib/chaltron/ldap/connection.rb

Constant Summary

NET_LDAP_ENCRYPTION_METHOD =

{
  simple_tls: :simple_tls,
  start_tls:  :start_tls,
  plain:      nil
}.freeze

Instance Attribute Summary

• #ldap ⇒ Object readonly

  Returns the value of attribute ldap.

Instance Method Summary

• #auth(login, password) ⇒ Object
• #find_by_uid(id) ⇒ Object
• #find_groups_by_member(entry) ⇒ Object
• #find_user(*args) ⇒ Object
• #find_users(args) ⇒ Object
• #initialize(params = {}) ⇒ Connection constructor

  A new instance of Connection.

• #ldap_search(*args) ⇒ Object
• #update_attributes(dn, args) ⇒ Object

Constructor Details

#initialize(params = {}) ⇒ Connection

Returns a new instance of Connection.

# File 'lib/chaltron/ldap/connection.rb', line 15

def initialize(params = {})
  @ldap = Net::LDAP.new(adapter_options)
end

Instance Attribute Details

#ldap ⇒ Object (readonly)

Returns the value of attribute ldap.

# File 'lib/chaltron/ldap/connection.rb', line 13

def ldap
  @ldap
end

Instance Method Details

#auth(login, password) ⇒ Object

# File 'lib/chaltron/ldap/connection.rb', line 19

def auth(login, password)
  filter = Net::LDAP::Filter.eq(uid, login)
  ldap.bind_as(base: base, filter: filter, password: password)
end

#find_by_uid(id) ⇒ Object

# File 'lib/chaltron/ldap/connection.rb', line 24

def find_by_uid(id)
  opts = {}
  opts[uid.to_sym] = id
  ret = find_user(opts)
end

#find_groups_by_member(entry) ⇒ Object

# File 'lib/chaltron/ldap/connection.rb', line 73

def find_groups_by_member(entry)
  options = {
    base: Chaltron.ldap_group_base || base,
    filter: Chaltron.ldap_group_member_filter.call(entry)
  }
  ldap_search(options)
end

#find_user(*args) ⇒ Object

# File 'lib/chaltron/ldap/connection.rb', line 30

def find_user(*args)
  find_users(*args).first
end

#find_users(args) ⇒ Object

# File 'lib/chaltron/ldap/connection.rb', line 47

def find_users(args)
  return [] if args.empty?
  limit = args.delete(:limit)
  fields = args.keys

  if fields.include?(:dn)
    options = {
      base: args[:dn],
      scope: Net::LDAP::SearchScope_BaseObject
    }
  else
    filters = fields.map do |field|
      f = translate_field(field)
      Net::LDAP::Filter.eq(f, args[field]) if f
    end
    options = {
      base: base,
      filter: filters.inject { |sum, n| Net::LDAP::Filter.join(sum, n) }
    }
  end
  options.merge!(size: limit) unless limit.nil?
  ldap_search(options).map do |entry|
    Chaltron::LDAP::Person.new(entry, uid) if entry.respond_to? uid
  end.compact
end

#ldap_search(*args) ⇒ Object

# File 'lib/chaltron/ldap/connection.rb', line 34

def ldap_search(*args)
  results = ldap.search(*args)
  if results.nil?
    response = ldap.get_operation_result
    unless response.code.zero?
      Rails.logger.warn("LDAP search error: #{response.message}")
    end
    []
  else
    results
  end
end

#update_attributes(dn, args) ⇒ Object

# File 'lib/chaltron/ldap/connection.rb', line 81

def update_attributes(dn, args)
  ldap.modify dn: dn, operations: args.map { |k,v| [:replace, k, v] }
end