ad-framework 0.1.0

data/.gitignore

@@ -0,0 +1,6 @@
+*.gem
+.bundle
+Gemfile.lock
+pkg/*
+log/*
+coverage/*

data/Gemfile

@@ -0,0 +1,12 @@
+source "http://rubygems.org"
+
+# Specify your gem's dependencies in ad-framework.gemspec
+gemspec
+
+gem 'rake', "~>0.9.2"
+
+if RUBY_VERSION =~ /^1.8/
+  gem 'rcov'
+else
+  gem 'simplecov', :require => false
+end

data/README.markdown

@@ -0,0 +1,36 @@
+# AD::Framework
+
+A framework for defining an ActiveDirectory schema in ruby.
+
+## Description
+
+AD::Framework is a basis for defining an Active Directory schema in ruby. It provides all the building blocks needed to access and modify Active Directory data.
+
+## Installation
+
+    gem install ad-framework
+
+## License
+
+Copyright (c) 2011 Collin Redding and Team Insight
+
+Permission is hereby granted, free of charge, to any person
+obtaining a copy of this software and associated documentation
+files (the "Software"), to deal in the Software without
+restriction, including without limitation the rights to use,
+copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the
+Software is furnished to do so, subject to the following
+conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES
+OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
+HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY,
+WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
+FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR
+OTHER DEALINGS IN THE SOFTWARE.

data/Rakefile

@@ -0,0 +1,19 @@
+require 'assert/rake_tasks'
+include Assert::RakeTasks
+
+require 'bundler'
+Bundler::GemHelper.install_tasks
+
+if RUBY_VERSION =~ /^1.8/
+  require 'rcov/rcovtask'
+  Rcov::RcovTask.new('coverage') do |t|
+    t.test_files = FileList['test/**/*_test.rb']
+    t.rcov_opts << "--no-html"
+    t.verbose = true
+  end
+else
+  task :coverage do
+    ENV['COVERAGE'] = "true"
+    Rake::Task['test'].execute
+  end
+end

data/ad-framework.gemspec

@@ -0,0 +1,25 @@
+# -*- encoding: utf-8 -*-
+$:.push File.expand_path("../lib", __FILE__)
+require "ad-framework/version"
+
+Gem::Specification.new do |s|
+  s.name        = "ad-framework"
+  s.version     = Ad::Framework::VERSION
+  s.authors     = ["Collin Redding", "Matt McPherson"]
+  s.homepage    = "http://github.com/teaminsight/ad-framework"
+  s.summary     = %q{A framework for defining an ActiveDirectory schema in ruby.}
+  s.description = %q{A framework for defining an ActiveDirectory schema in ruby.}
+
+  s.rubyforge_project = "ad-framework"
+
+  s.files         = `git ls-files`.split("\n")
+  s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
+  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.require_paths = ["lib"]
+
+  s.add_runtime_dependency "ad-ldap", "~>0.1.1"
+
+  s.add_development_dependency "assert",  "~>0.3.0"
+  s.add_development_dependency "log4r",   "~>1.1.9"
+  s.add_development_dependency "mocha",   "~>0.9.12"
+end

data/doc/open_ldap_server.markdown

@@ -0,0 +1,17 @@
+# OpenLDAP server
+
+TODO - explanation of why this is needed for testing
+
+## Installation
+
+TODO
+
+## Configuration
+
+TODO
+
+## Running
+
+```
+sudo /usr/local/libexec/slapd -d 255
+```

data/extras/adtest.schema

@@ -0,0 +1,304 @@
+# Attribute Types #############################################################
+
+attributetype ( 1.2.840.113556.1.4.159
+	NAME 'accountExpires'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.1307
+	NAME 'accountNameHistory'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.4.150
+	NAME 'adminCount'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.2.226
+	NAME 'adminDescription'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.2.194
+	NAME 'adminDisplayName'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.652
+ 	NAME 'assistant'
+ 	SYNTAX '1.3.6.1.4.1.1466.115.121.1.12'
+ 	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.49
+	NAME 'badPasswordTime'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.12
+	NAME 'badPwdCount'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.916
+ 	NAME 'canonicalName'
+ 	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.4.156
+	NAME 'comment'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.2.146
+	NAME 'company'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.25
+ 	NAME 'countryCode'
+ 	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+ 	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.2.141
+	NAME 'department'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.261
+	NAME 'division'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.35
+	NAME 'employeeID'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.44
+	NAME 'homeDirectory'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.45
+	NAME 'homeDrive'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.721
+	NAME 'ipPhone'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.52
+	NAME 'lastLogon'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.662
+	NAME 'lockoutTime'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.169
+	NAME 'logonCount'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.76
+	NAME 'maxStorage'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 634.2.1
+	NAME 'middleName'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.146
+	NAME 'objectSid'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.40'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.144
+	NAME 'operatorCount'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.2.277
+	NAME 'otherHomePhone'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.4.722
+	NAME 'otherIpPhone'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.4.647
+	NAME 'otherMobile'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.2.18
+	NAME 'otherTelephone'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.2.118
+	NAME 'otherPager'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.4.139
+	NAME 'profilePath'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.2.210
+ 	NAME 'proxyAddresses'
+ 	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.4.96
+	NAME 'pwdLastSet'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.153
+	NAME 'rid'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.221
+	NAME 'sAMAccountName'
+	EQUALITY caseIgnoreMatch
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.302
+	NAME 'sAMAccountType'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.121
+	NAME 'securityIdentifier'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.40'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.771
+	NAME 'servicePrincipalName'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15' )
+
+attributetype ( 1.2.840.113556.1.4.609
+	NAME 'sIDHistory'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
+
+attributetype ( 1.2.840.113556.1.4.375
+ 	NAME 'systemFlags'
+ 	EQUALITY integerMatch
+ 	ORDERING integerOrderingMatch
+ 	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+ 	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.1301
+	NAME 'tokenGroups'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
+
+attributetype ( 1.2.840.113556.1.4.1418
+	NAME 'tokenGroupsGlobalAndUniversal'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
+
+attributetype ( 1.2.840.113556.1.4.1303
+	NAME 'tokenGroupsNoGCAcceptable'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.40' )
+
+attributetype ( 1.2.840.113556.1.4.90
+	NAME 'unicodePwd'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.40'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.8
+	NAME 'userAccountControl'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.27'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.138
+	NAME 'userParameters'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.4.656
+	NAME 'userPrincipalName'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.15'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.2.3
+	NAME 'whenChanged'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.24'
+	SINGLE-VALUE )
+
+attributetype ( 1.2.840.113556.1.2.2
+	NAME 'whenCreated'
+	SYNTAX '1.3.6.1.4.1.1466.115.121.1.24'
+	SINGLE-VALUE )
+
+###############################################################################
+
+# Object Classes ##############################################################
+
+objectclass ( 634.1.1
+	NAME 'adtest-top'
+	ABSTRACT
+	MUST ( objectClass )
+	MAY (
+	  cn $ description $ distinguishedName $ whenCreated $ whenChanged $ displayName $
+		adminDisplayName $ proxyAddresses $ adminDescription $ systemFlags $ canonicalName
+	)
+ )
+
+objectclass ( 634.1.2
+	NAME 'adtest-container'
+	SUP adtest-top
+	STRUCTURAL
+	MUST ( cn )
+ )
+
+objectclass ( 634.1.3
+ 	NAME 'adtest-person'
+ 	SUP adtest-top
+ 	ABSTRACT
+ 	MUST ( cn )
+ 	MAY ( sn $ telephoneNumber $ userPassword )
+ )
+
+objectclass ( 634.1.4
+	NAME 'adtest-organizationalPerson'
+	SUP adtest-person
+	ABSTRACT
+	MAY (
+	  streetAddress $ homePostalAddress $ assistant $ company $ countryCode $ c $ department $
+	  division $ mail $ employeeID $ facsimileTelephoneNumber $ generationQualifier $ givenName $
+	  houseIdentifier $ initials $ l $ manager $ ou $ o $ otherMailbox $ middleName $ personalTitle $
+	  otherHomePhone $ homePhone $ otherIpPhone $ ipPhone $ otherMobile $ mobile $ otherTelephone $
+	  otherPager $ pager $ physicalDeliveryOfficeName $ postalAddress $ postalCode $ postOfficeBox $
+	  st $ street $ co $ title $ comment
+	)
+ )
+
+objectclass ( 634.1.5
+	NAME 'adtest-user'
+	SUP adtest-organizationalPerson
+	STRUCTURAL
+	MAY (
+	  accountExpires $ adminCount $ badPasswordTime $ badPwdCount $ mail $ employeeNumber $
+	  employeeType $ givenName $ homeDirectory $ homeDrive $ initials $ lastLogon $ lockoutTime $
+    logonCount $ maxStorage $ operatorCount $ profilePath $ pwdLastSet $ roomNumber $
+    servicePrincipalName $ unicodePwd $ userAccountControl $ userParameters $ userPrincipalName
+  )
+ )
+
+objectclass ( 634.1.6
+ 	NAME 'adtest-securityPrincipal'
+ 	SUP adtest-top
+ 	AUXILIARY
+ 	MUST ( objectSid $ sAMAccountName )
+ 	MAY (
+ 	  accountNameHistory $ sAMAccountType $ rid $ securityIdentifier $ sIDHistory $ tokenGroups $
+ 	  tokenGroupsGlobalAndUniversal $ tokenGroupsNoGCAcceptable
+  )
+ )
+
+###############################################################################

data/extras/slapd.conf

@@ -0,0 +1,10 @@
+include /usr/local/etc/openldap/schema/core.schema
+include /usr/local/etc/openldap/schema/cosine.schema
+include /usr/local/etc/openldap/schema/inetorgperson.schema
+include /usr/local/etc/openldap/schema/adtest.schema
+
+database bdb
+suffix "dc=localhost"
+rootdn "cn=root,dc=localhost"
+rootpw secret
+directory /usr/local/var/openldap-data

data/lib/ad-framework.rb

@@ -0,0 +1,53 @@
+require 'ad-framework/config'
+require 'ad-framework/attribute_type'
+require 'ad-framework/auxiliary_class'
+require 'ad-framework/structural_class'
+
+module AD
+  module Framework
+    class << self
+
+      def configure
+        if block_given?
+          yield self.config
+        end
+        self.config
+      end
+
+      def config
+        @config ||= AD::Framework::Config.new
+      end
+
+      def connection
+        self.config.adapter
+      end
+
+      def defined_attributes
+        self.config.attributes
+      end
+      def register_attributes(attributes)
+        attributes.each do |attribute|
+          self.config.add_attribute(attribute)
+        end
+      end
+
+      def defined_attribute_types
+        self.config.attribute_types
+      end
+      def register_attribute_type(attribute_type)
+        self.config.add_attribute_type(attribute_type)
+      end
+
+      def defined_object_classes
+        self.config.object_classes
+      end
+      def register_structural_class(structural_class)
+        self.config.add_object_class(structural_class)
+      end
+      def register_auxiliary_class(auxiliary_class)
+        self.config.add_object_class(auxiliary_class)
+      end
+
+    end
+  end
+end