net-ldap 0.14.0 → 0.18.0

data/test/fixtures/seed.ldif

@@ -1,374 +0,0 @@
-dn: ou=People,dc=rubyldap,dc=com
-objectClass: top
-objectClass: organizationalUnit
-ou: People
-
-dn: ou=Groups,dc=rubyldap,dc=com
-objectClass: top
-objectClass: organizationalUnit
-ou: Groups
-
-# Directory Superuser
-dn: uid=admin,dc=rubyldap,dc=com
-uid: admin
-cn: system administrator
-sn: administrator
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-displayName: Directory Superuser
-userPassword: passworD1
-
-# Users 1-10
-
-dn: uid=user1,ou=People,dc=rubyldap,dc=com
-uid: user1
-cn: user1
-sn: user1
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user1@rubyldap.com
-
-dn: uid=user2,ou=People,dc=rubyldap,dc=com
-uid: user2
-cn: user2
-sn: user2
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user2@rubyldap.com
-
-dn: uid=user3,ou=People,dc=rubyldap,dc=com
-uid: user3
-cn: user3
-sn: user3
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user3@rubyldap.com
-
-dn: uid=user4,ou=People,dc=rubyldap,dc=com
-uid: user4
-cn: user4
-sn: user4
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user4@rubyldap.com
-
-dn: uid=user5,ou=People,dc=rubyldap,dc=com
-uid: user5
-cn: user5
-sn: user5
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user5@rubyldap.com
-
-dn: uid=user6,ou=People,dc=rubyldap,dc=com
-uid: user6
-cn: user6
-sn: user6
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user6@rubyldap.com
-
-dn: uid=user7,ou=People,dc=rubyldap,dc=com
-uid: user7
-cn: user7
-sn: user7
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user7@rubyldap.com
-
-dn: uid=user8,ou=People,dc=rubyldap,dc=com
-uid: user8
-cn: user8
-sn: user8
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user8@rubyldap.com
-
-dn: uid=user9,ou=People,dc=rubyldap,dc=com
-uid: user9
-cn: user9
-sn: user9
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user9@rubyldap.com
-
-dn: uid=user10,ou=People,dc=rubyldap,dc=com
-uid: user10
-cn: user10
-sn: user10
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user10@rubyldap.com
-
-# Emailless User
-
-dn: uid=emailless-user1,ou=People,dc=rubyldap,dc=com
-uid: emailless-user1
-cn: emailless-user1
-sn: emailless-user1
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-
-# Groupless User
-
-dn: uid=groupless-user1,ou=People,dc=rubyldap,dc=com
-uid: groupless-user1
-cn: groupless-user1
-sn: groupless-user1
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-
-# Admin User
-
-dn: uid=admin1,ou=People,dc=rubyldap,dc=com
-uid: admin1
-cn: admin1
-sn: admin1
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: admin1@rubyldap.com
-
-# Groups
-
-dn: cn=ghe-users,ou=Groups,dc=rubyldap,dc=com
-cn: ghe-users
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=emailless-user1,ou=People,dc=rubyldap,dc=com
-
-dn: cn=all-users,ou=Groups,dc=rubyldap,dc=com
-cn: all-users
-objectClass: groupOfNames
-member: cn=ghe-users,ou=Groups,dc=rubyldap,dc=com
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-member: uid=emailless-user1,ou=People,dc=rubyldap,dc=com
-
-dn: cn=ghe-admins,ou=Groups,dc=rubyldap,dc=com
-cn: ghe-admins
-objectClass: groupOfNames
-member: uid=admin1,ou=People,dc=rubyldap,dc=com
-
-dn: cn=all-admins,ou=Groups,dc=rubyldap,dc=com
-cn: all-admins
-objectClass: groupOfNames
-member: cn=ghe-admins,ou=Groups,dc=rubyldap,dc=com
-member: uid=admin1,ou=People,dc=rubyldap,dc=com
-
-dn: cn=n-member-group10,ou=Groups,dc=rubyldap,dc=com
-cn: n-member-group10
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-
-dn: cn=nested-group1,ou=Groups,dc=rubyldap,dc=com
-cn: nested-group1
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-
-dn: cn=nested-group2,ou=Groups,dc=rubyldap,dc=com
-cn: nested-group2
-objectClass: groupOfNames
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-
-dn: cn=nested-groups,ou=Groups,dc=rubyldap,dc=com
-cn: nested-groups
-objectClass: groupOfNames
-member: cn=nested-group1,ou=Groups,dc=rubyldap,dc=com
-member: cn=nested-group2,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-member-nested-group1,ou=Groups,dc=rubyldap,dc=com
-cn: n-member-nested-group1
-objectClass: groupOfNames
-member: cn=nested-group1,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-group0.0.0,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-group0.0.0
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-group0.0.1,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-group0.0.1
-objectClass: groupOfNames
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-group0.0,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-group0.0
-objectClass: groupOfNames
-member: cn=deeply-nested-group0.0.0,ou=Groups,dc=rubyldap,dc=com
-member: cn=deeply-nested-group0.0.1,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-group0,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-group0
-objectClass: groupOfNames
-member: cn=deeply-nested-group0.0,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-groups,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-groups
-objectClass: groupOfNames
-member: cn=deeply-nested-group0,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group1,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group1
-objectClass: groupOfNames
-member: cn=nested-group1,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group2,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group2
-objectClass: groupOfNames
-member: cn=n-depth-nested-group1,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group3,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group3
-objectClass: groupOfNames
-member: cn=n-depth-nested-group2,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group4,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group4
-objectClass: groupOfNames
-member: cn=n-depth-nested-group3,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group5,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group5
-objectClass: groupOfNames
-member: cn=n-depth-nested-group4,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group6,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group6
-objectClass: groupOfNames
-member: cn=n-depth-nested-group5,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group7,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group7
-objectClass: groupOfNames
-member: cn=n-depth-nested-group6,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group8,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group8
-objectClass: groupOfNames
-member: cn=n-depth-nested-group7,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group9,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group9
-objectClass: groupOfNames
-member: cn=n-depth-nested-group8,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=head-group,ou=Groups,dc=rubyldap,dc=com
-cn: head-group
-objectClass: groupOfNames
-member: cn=tail-group,ou=Groups,dc=rubyldap,dc=com
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-
-dn: cn=tail-group,ou=Groups,dc=rubyldap,dc=com
-cn: tail-group
-objectClass: groupOfNames
-member: cn=head-group,ou=Groups,dc=rubyldap,dc=com
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-
-dn: cn=recursively-nested-groups,ou=Groups,dc=rubyldap,dc=com
-cn: recursively-nested-groups
-objectClass: groupOfNames
-member: cn=head-group,ou=Groups,dc=rubyldap,dc=com
-member: cn=tail-group,ou=Groups,dc=rubyldap,dc=com
-
-# posixGroup
-
-dn: cn=posix-group1,ou=Groups,dc=rubyldap,dc=com
-cn: posix-group1
-objectClass: posixGroup
-gidNumber: 1001
-memberUid: user1
-memberUid: user2
-memberUid: user3
-memberUid: user4
-memberUid: user5
-
-# missing members
-
-dn: cn=missing-users,ou=Groups,dc=rubyldap,dc=com
-cn: missing-users
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=nonexistent-user,ou=People,dc=rubyldap,dc=com

data/test/integration/test_add.rb

@@ -1,28 +0,0 @@
-require_relative '../test_helper'
-
-class TestAddIntegration < LDAPIntegrationTestCase
-  def setup
-    super
-    @ldap.authenticate "cn=admin,dc=rubyldap,dc=com", "passworD1"
-
-    @dn = "uid=added-user1,ou=People,dc=rubyldap,dc=com"
-  end
-
-  def test_add
-    attrs = {
-      objectclass: %w(top inetOrgPerson organizationalPerson person),
-      uid:  "added-user1",
-      cn:   "added-user1",
-      sn:   "added-user1",
-      mail: "added-user1@rubyldap.com",
-    }
-
-    assert @ldap.add(dn: @dn, attributes: attrs), @ldap.get_operation_result.inspect
-
-    assert result = @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject).first
-  end
-
-  def teardown
-    @ldap.delete dn: @dn
-  end
-end

data/test/integration/test_ber.rb

@@ -1,30 +0,0 @@
-require_relative '../test_helper'
-
-class TestBERIntegration < LDAPIntegrationTestCase
-  # Test whether the TRUE boolean value is encoded correctly by performing a
-  # search operation.
-  def test_true_ber_encoding
-    # request these attrs to simplify test; use symbols to match Entry#attribute_names
-    attrs = [:dn, :uid, :cn, :mail]
-
-    assert types_entry = @ldap.search(
-      base: "dc=rubyldap,dc=com",
-      filter: "(uid=user1)",
-      size: 1,
-      attributes: attrs,
-      attributes_only: true,
-    ).first
-
-    # matches attributes we requested
-    assert_equal attrs, types_entry.attribute_names
-
-    # assert values are empty
-    types_entry.each do |name, values|
-      next if name == :dn
-      assert values.empty?
-    end
-
-    assert_includes Net::LDAP::ResultCodesSearchSuccess,
-      @ldap.get_operation_result.code, "should be a successful search operation"
-  end
-end

data/test/integration/test_bind.rb

@@ -1,42 +0,0 @@
-require_relative '../test_helper'
-
-class TestBindIntegration < LDAPIntegrationTestCase
-  def test_bind_success
-    assert @ldap.bind(method: :simple, username: "uid=user1,ou=People,dc=rubyldap,dc=com", password: "passworD1"), @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_timeout
-    @ldap.port = 8389
-    error = assert_raise Net::LDAP::Error do
-      @ldap.bind(method: :simple, username: "uid=user1,ou=People,dc=rubyldap,dc=com", password: "passworD1")
-    end
-    assert_equal('Connection timed out - user specified timeout', error.message)
-  end
-
-  def test_bind_anonymous_fail
-    refute @ldap.bind(method: :simple, username: "uid=user1,ou=People,dc=rubyldap,dc=com", password: ""), @ldap.get_operation_result.inspect
-
-    result = @ldap.get_operation_result
-    assert_equal Net::LDAP::ResultCodeUnwillingToPerform, result.code
-    assert_equal Net::LDAP::ResultStrings[Net::LDAP::ResultCodeUnwillingToPerform], result.message
-    assert_equal "unauthenticated bind (DN with no password) disallowed",
-      result.error_message
-    assert_equal "", result.matched_dn
-  end
-
-  def test_bind_fail
-    refute @ldap.bind(method: :simple, username: "uid=user1,ou=People,dc=rubyldap,dc=com", password: "not my password"), @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_cafile
-    tls_options = OpenSSL::SSL::SSLContext::DEFAULT_PARAMS.merge(:ca_file => CA_FILE)
-    @ldap.encryption(method: :start_tls, tls_options: tls_options)
-    assert @ldap.bind(method: :simple, username: "uid=user1,ou=People,dc=rubyldap,dc=com", password: "passworD1"), @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_verify_none
-    tls_options = OpenSSL::SSL::SSLContext::DEFAULT_PARAMS.merge(:verify_mode => OpenSSL::SSL::VERIFY_NONE)
-    @ldap.encryption(method: :start_tls, tls_options: tls_options)
-    assert @ldap.bind(method: :simple, username: "uid=user1,ou=People,dc=rubyldap,dc=com", password: "passworD1"), @ldap.get_operation_result.inspect
-  end
-end

data/test/integration/test_delete.rb

@@ -1,31 +0,0 @@
-require_relative '../test_helper'
-
-class TestDeleteIntegration < LDAPIntegrationTestCase
-  def setup
-    super
-    @ldap.authenticate "cn=admin,dc=rubyldap,dc=com", "passworD1"
-
-    @dn = "uid=delete-user1,ou=People,dc=rubyldap,dc=com"
-
-    attrs = {
-      objectclass: %w(top inetOrgPerson organizationalPerson person),
-      uid:  "delete-user1",
-      cn:   "delete-user1",
-      sn:   "delete-user1",
-      mail: "delete-user1@rubyldap.com",
-    }
-    unless @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject)
-      assert @ldap.add(dn: @dn, attributes: attrs), @ldap.get_operation_result.inspect
-    end
-    assert @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject)
-  end
-
-  def test_delete
-    assert @ldap.delete(dn: @dn), @ldap.get_operation_result.inspect
-    refute @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject)
-
-    result = @ldap.get_operation_result
-    assert_equal Net::LDAP::ResultCodeNoSuchObject, result.code
-    assert_equal Net::LDAP::ResultStrings[Net::LDAP::ResultCodeNoSuchObject], result.message
-  end
-end

data/test/integration/test_open.rb

@@ -1,88 +0,0 @@
-require_relative '../test_helper'
-
-class TestBindIntegration < LDAPIntegrationTestCase
-  def test_binds_without_open
-    events = @service.subscribe "bind.net_ldap_connection"
-
-    @ldap.search(filter: "uid=user1", base: "ou=People,dc=rubyldap,dc=com", ignore_server_caps: true)
-    @ldap.search(filter: "uid=user1", base: "ou=People,dc=rubyldap,dc=com", ignore_server_caps: true)
-
-    assert_equal 2, events.size
-  end
-
-  def test_binds_with_open
-    events = @service.subscribe "bind.net_ldap_connection"
-
-    @ldap.open do
-      @ldap.search(filter: "uid=user1", base: "ou=People,dc=rubyldap,dc=com", ignore_server_caps: true)
-      @ldap.search(filter: "uid=user1", base: "ou=People,dc=rubyldap,dc=com", ignore_server_caps: true)
-    end
-
-    assert_equal 1, events.size
-  end
-
-  # NOTE: query for two or more entries so that the socket must be read
-  # multiple times.
-  # See The Problem: https://github.com/ruby-ldap/ruby-net-ldap/issues/136
-
-  def test_nested_search_without_open
-    entries = []
-    nested_entry = nil
-
-    @ldap.search(filter: "(|(uid=user1)(uid=user2))", base: "ou=People,dc=rubyldap,dc=com") do |entry|
-      entries << entry.uid.first
-      nested_entry ||= @ldap.search(filter: "uid=user3", base: "ou=People,dc=rubyldap,dc=com").first
-    end
-
-    assert_equal "user3", nested_entry.uid.first
-    assert_equal %w(user1 user2), entries
-  end
-
-  def test_nested_search_with_open
-    entries = []
-    nested_entry = nil
-
-    @ldap.open do
-      @ldap.search(filter: "(|(uid=user1)(uid=user2))", base: "ou=People,dc=rubyldap,dc=com") do |entry|
-        entries << entry.uid.first
-        nested_entry ||= @ldap.search(filter: "uid=user3", base: "ou=People,dc=rubyldap,dc=com").first
-      end
-    end
-
-    assert_equal "user3", nested_entry.uid.first
-    assert_equal %w(user1 user2), entries
-  end
-
-  def test_nested_add_with_open
-    entries = []
-    nested_entry = nil
-
-    dn = "uid=nested-open-added-user1,ou=People,dc=rubyldap,dc=com"
-    attrs = {
-      objectclass: %w(top inetOrgPerson organizationalPerson person),
-      uid:  "nested-open-added-user1",
-      cn:   "nested-open-added-user1",
-      sn:   "nested-open-added-user1",
-      mail: "nested-open-added-user1@rubyldap.com",
-    }
-
-    @ldap.authenticate "cn=admin,dc=rubyldap,dc=com", "passworD1"
-    @ldap.delete dn: dn
-
-    @ldap.open do
-      @ldap.search(filter: "(|(uid=user1)(uid=user2))", base: "ou=People,dc=rubyldap,dc=com") do |entry|
-        entries << entry.uid.first
-
-        nested_entry ||= begin
-          assert @ldap.add(dn: dn, attributes: attrs), @ldap.get_operation_result.inspect
-          @ldap.search(base: dn, scope: Net::LDAP::SearchScope_BaseObject).first
-        end
-      end
-    end
-
-    assert_equal %w(user1 user2), entries
-    assert_equal "nested-open-added-user1", nested_entry.uid.first
-  ensure
-    @ldap.delete dn: dn
-  end
-end

data/test/integration/test_password_modify.rb

@@ -1,80 +0,0 @@
-require_relative '../test_helper'
-
-class TestPasswordModifyIntegration < LDAPIntegrationTestCase
-  def setup
-    super
-    @ldap.authenticate 'cn=admin,dc=rubyldap,dc=com', 'passworD1'
-
-    @dn = 'uid=modify-password-user1,ou=People,dc=rubyldap,dc=com'
-
-    attrs = {
-      objectclass: %w(top inetOrgPerson organizationalPerson person),
-      uid: 'modify-password-user1',
-      cn: 'modify-password-user1',
-      sn: 'modify-password-user1',
-      mail: 'modify-password-user1@rubyldap.com',
-      userPassword: 'passworD1',
-    }
-    unless @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject)
-      assert @ldap.add(dn: @dn, attributes: attrs), @ldap.get_operation_result.inspect
-    end
-    assert @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject)
-
-    @auth = {
-      method: :simple,
-      username: @dn,
-      password: 'passworD1',
-    }
-  end
-
-  def test_password_modify
-    assert @ldap.password_modify(dn: @dn,
-                                 auth: @auth,
-                                 old_password: 'passworD1',
-                                 new_password: 'passworD2')
-
-    assert @ldap.get_operation_result.extended_response.nil?,
-      'Should not have generated a new password'
-
-    refute @ldap.bind(username: @dn, password: 'passworD1', method: :simple),
-      'Old password should no longer be valid'
-
-    assert @ldap.bind(username: @dn, password: 'passworD2', method: :simple),
-      'New password should be valid'
-  end
-
-  def test_password_modify_generate
-    assert @ldap.password_modify(dn: @dn,
-                                 auth: @auth,
-                                 old_password: 'passworD1')
-
-    generated_password = @ldap.get_operation_result.extended_response[0][0]
-
-    assert generated_password, 'Should have generated a password'
-
-    refute @ldap.bind(username: @dn, password: 'passworD1', method: :simple),
-      'Old password should no longer be valid'
-
-    assert @ldap.bind(username: @dn, password: generated_password, method: :simple),
-      'New password should be valid'
-  end
-
-  def test_password_modify_generate_no_old_password
-    assert @ldap.password_modify(dn: @dn,
-                                 auth: @auth)
-
-    generated_password = @ldap.get_operation_result.extended_response[0][0]
-
-    assert generated_password, 'Should have generated a password'
-
-    refute @ldap.bind(username: @dn, password: 'passworD1', method: :simple),
-      'Old password should no longer be valid'
-
-    assert @ldap.bind(username: @dn, password: generated_password, method: :simple),
-      'New password should be valid'
-  end
-
-  def teardown
-    @ldap.delete dn: @dn
-  end
-end