net-ldap 0.16.0 → 0.17.0

data/test/fixtures/seed.ldif

@@ -1,374 +0,0 @@
-dn: ou=People,dc=rubyldap,dc=com
-objectClass: top
-objectClass: organizationalUnit
-ou: People
-
-dn: ou=Groups,dc=rubyldap,dc=com
-objectClass: top
-objectClass: organizationalUnit
-ou: Groups
-
-# Directory Superuser
-dn: uid=admin,dc=rubyldap,dc=com
-uid: admin
-cn: system administrator
-sn: administrator
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-displayName: Directory Superuser
-userPassword: passworD1
-
-# Users 1-10
-
-dn: uid=user1,ou=People,dc=rubyldap,dc=com
-uid: user1
-cn: user1
-sn: user1
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user1@rubyldap.com
-
-dn: uid=user2,ou=People,dc=rubyldap,dc=com
-uid: user2
-cn: user2
-sn: user2
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user2@rubyldap.com
-
-dn: uid=user3,ou=People,dc=rubyldap,dc=com
-uid: user3
-cn: user3
-sn: user3
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user3@rubyldap.com
-
-dn: uid=user4,ou=People,dc=rubyldap,dc=com
-uid: user4
-cn: user4
-sn: user4
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user4@rubyldap.com
-
-dn: uid=user5,ou=People,dc=rubyldap,dc=com
-uid: user5
-cn: user5
-sn: user5
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user5@rubyldap.com
-
-dn: uid=user6,ou=People,dc=rubyldap,dc=com
-uid: user6
-cn: user6
-sn: user6
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user6@rubyldap.com
-
-dn: uid=user7,ou=People,dc=rubyldap,dc=com
-uid: user7
-cn: user7
-sn: user7
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user7@rubyldap.com
-
-dn: uid=user8,ou=People,dc=rubyldap,dc=com
-uid: user8
-cn: user8
-sn: user8
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user8@rubyldap.com
-
-dn: uid=user9,ou=People,dc=rubyldap,dc=com
-uid: user9
-cn: user9
-sn: user9
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user9@rubyldap.com
-
-dn: uid=user10,ou=People,dc=rubyldap,dc=com
-uid: user10
-cn: user10
-sn: user10
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: user10@rubyldap.com
-
-# Emailless User
-
-dn: uid=emailless-user1,ou=People,dc=rubyldap,dc=com
-uid: emailless-user1
-cn: emailless-user1
-sn: emailless-user1
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-
-# Groupless User
-
-dn: uid=groupless-user1,ou=People,dc=rubyldap,dc=com
-uid: groupless-user1
-cn: groupless-user1
-sn: groupless-user1
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-
-# Admin User
-
-dn: uid=admin1,ou=People,dc=rubyldap,dc=com
-uid: admin1
-cn: admin1
-sn: admin1
-objectClass: top
-objectClass: person
-objectClass: organizationalPerson
-objectClass: inetOrgPerson
-userPassword: passworD1
-mail: admin1@rubyldap.com
-
-# Groups
-
-dn: cn=ghe-users,ou=Groups,dc=rubyldap,dc=com
-cn: ghe-users
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=emailless-user1,ou=People,dc=rubyldap,dc=com
-
-dn: cn=all-users,ou=Groups,dc=rubyldap,dc=com
-cn: all-users
-objectClass: groupOfNames
-member: cn=ghe-users,ou=Groups,dc=rubyldap,dc=com
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-member: uid=emailless-user1,ou=People,dc=rubyldap,dc=com
-
-dn: cn=ghe-admins,ou=Groups,dc=rubyldap,dc=com
-cn: ghe-admins
-objectClass: groupOfNames
-member: uid=admin1,ou=People,dc=rubyldap,dc=com
-
-dn: cn=all-admins,ou=Groups,dc=rubyldap,dc=com
-cn: all-admins
-objectClass: groupOfNames
-member: cn=ghe-admins,ou=Groups,dc=rubyldap,dc=com
-member: uid=admin1,ou=People,dc=rubyldap,dc=com
-
-dn: cn=n-member-group10,ou=Groups,dc=rubyldap,dc=com
-cn: n-member-group10
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-
-dn: cn=nested-group1,ou=Groups,dc=rubyldap,dc=com
-cn: nested-group1
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-
-dn: cn=nested-group2,ou=Groups,dc=rubyldap,dc=com
-cn: nested-group2
-objectClass: groupOfNames
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-
-dn: cn=nested-groups,ou=Groups,dc=rubyldap,dc=com
-cn: nested-groups
-objectClass: groupOfNames
-member: cn=nested-group1,ou=Groups,dc=rubyldap,dc=com
-member: cn=nested-group2,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-member-nested-group1,ou=Groups,dc=rubyldap,dc=com
-cn: n-member-nested-group1
-objectClass: groupOfNames
-member: cn=nested-group1,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-group0.0.0,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-group0.0.0
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-group0.0.1,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-group0.0.1
-objectClass: groupOfNames
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-group0.0,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-group0.0
-objectClass: groupOfNames
-member: cn=deeply-nested-group0.0.0,ou=Groups,dc=rubyldap,dc=com
-member: cn=deeply-nested-group0.0.1,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-group0,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-group0
-objectClass: groupOfNames
-member: cn=deeply-nested-group0.0,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=deeply-nested-groups,ou=Groups,dc=rubyldap,dc=com
-cn: deeply-nested-groups
-objectClass: groupOfNames
-member: cn=deeply-nested-group0,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group1,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group1
-objectClass: groupOfNames
-member: cn=nested-group1,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group2,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group2
-objectClass: groupOfNames
-member: cn=n-depth-nested-group1,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group3,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group3
-objectClass: groupOfNames
-member: cn=n-depth-nested-group2,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group4,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group4
-objectClass: groupOfNames
-member: cn=n-depth-nested-group3,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group5,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group5
-objectClass: groupOfNames
-member: cn=n-depth-nested-group4,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group6,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group6
-objectClass: groupOfNames
-member: cn=n-depth-nested-group5,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group7,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group7
-objectClass: groupOfNames
-member: cn=n-depth-nested-group6,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group8,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group8
-objectClass: groupOfNames
-member: cn=n-depth-nested-group7,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=n-depth-nested-group9,ou=Groups,dc=rubyldap,dc=com
-cn: n-depth-nested-group9
-objectClass: groupOfNames
-member: cn=n-depth-nested-group8,ou=Groups,dc=rubyldap,dc=com
-
-dn: cn=head-group,ou=Groups,dc=rubyldap,dc=com
-cn: head-group
-objectClass: groupOfNames
-member: cn=tail-group,ou=Groups,dc=rubyldap,dc=com
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=user3,ou=People,dc=rubyldap,dc=com
-member: uid=user4,ou=People,dc=rubyldap,dc=com
-member: uid=user5,ou=People,dc=rubyldap,dc=com
-
-dn: cn=tail-group,ou=Groups,dc=rubyldap,dc=com
-cn: tail-group
-objectClass: groupOfNames
-member: cn=head-group,ou=Groups,dc=rubyldap,dc=com
-member: uid=user6,ou=People,dc=rubyldap,dc=com
-member: uid=user7,ou=People,dc=rubyldap,dc=com
-member: uid=user8,ou=People,dc=rubyldap,dc=com
-member: uid=user9,ou=People,dc=rubyldap,dc=com
-member: uid=user10,ou=People,dc=rubyldap,dc=com
-
-dn: cn=recursively-nested-groups,ou=Groups,dc=rubyldap,dc=com
-cn: recursively-nested-groups
-objectClass: groupOfNames
-member: cn=head-group,ou=Groups,dc=rubyldap,dc=com
-member: cn=tail-group,ou=Groups,dc=rubyldap,dc=com
-
-# posixGroup
-
-dn: cn=posix-group1,ou=Groups,dc=rubyldap,dc=com
-cn: posix-group1
-objectClass: posixGroup
-gidNumber: 1001
-memberUid: user1
-memberUid: user2
-memberUid: user3
-memberUid: user4
-memberUid: user5
-
-# missing members
-
-dn: cn=missing-users,ou=Groups,dc=rubyldap,dc=com
-cn: missing-users
-objectClass: groupOfNames
-member: uid=user1,ou=People,dc=rubyldap,dc=com
-member: uid=user2,ou=People,dc=rubyldap,dc=com
-member: uid=nonexistent-user,ou=People,dc=rubyldap,dc=com

data/test/integration/test_add.rb

@@ -1,28 +0,0 @@
-require_relative '../test_helper'
-
-class TestAddIntegration < LDAPIntegrationTestCase
-  def setup
-    super
-    @ldap.authenticate "cn=admin,dc=rubyldap,dc=com", "passworD1"
-
-    @dn = "uid=added-user1,ou=People,dc=rubyldap,dc=com"
-  end
-
-  def test_add
-    attrs = {
-      objectclass: %w(top inetOrgPerson organizationalPerson person),
-      uid:  "added-user1",
-      cn:   "added-user1",
-      sn:   "added-user1",
-      mail: "added-user1@rubyldap.com",
-    }
-
-    assert @ldap.add(dn: @dn, attributes: attrs), @ldap.get_operation_result.inspect
-
-    assert result = @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject).first
-  end
-
-  def teardown
-    @ldap.delete dn: @dn
-  end
-end

data/test/integration/test_ber.rb

@@ -1,30 +0,0 @@
-require_relative '../test_helper'
-
-class TestBERIntegration < LDAPIntegrationTestCase
-  # Test whether the TRUE boolean value is encoded correctly by performing a
-  # search operation.
-  def test_true_ber_encoding
-    # request these attrs to simplify test; use symbols to match Entry#attribute_names
-    attrs = [:dn, :uid, :cn, :mail]
-
-    assert types_entry = @ldap.search(
-      base: "dc=rubyldap,dc=com",
-      filter: "(uid=user1)",
-      size: 1,
-      attributes: attrs,
-      attributes_only: true,
-    ).first
-
-    # matches attributes we requested
-    assert_equal attrs, types_entry.attribute_names
-
-    # assert values are empty
-    types_entry.each do |name, values|
-      next if name == :dn
-      assert values.empty?
-    end
-
-    assert_includes Net::LDAP::ResultCodesSearchSuccess,
-      @ldap.get_operation_result.code, "should be a successful search operation"
-  end
-end

data/test/integration/test_bind.rb

@@ -1,244 +0,0 @@
-require_relative '../test_helper'
-
-class TestBindIntegration < LDAPIntegrationTestCase
-  def test_bind_success
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_timeout
-    @ldap.port = 8389
-    error = assert_raise Net::LDAP::Error do
-      @ldap.bind BIND_CREDS
-    end
-    msgs = ['Operation timed out - user specified timeout',
-            'Connection timed out - user specified timeout']
-    assert_send([msgs, :include?, error.message])
-  end
-
-  def test_bind_anonymous_fail
-    refute @ldap.bind(BIND_CREDS.merge(password: '')),
-           @ldap.get_operation_result.inspect
-
-    result = @ldap.get_operation_result
-    assert_equal Net::LDAP::ResultCodeUnwillingToPerform, result.code
-    assert_equal Net::LDAP::ResultStrings[Net::LDAP::ResultCodeUnwillingToPerform], result.message
-    assert_equal "unauthenticated bind (DN with no password) disallowed",
-      result.error_message
-    assert_equal "", result.matched_dn
-  end
-
-  def test_bind_fail
-    refute @ldap.bind(BIND_CREDS.merge(password: "not my password")),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_cafile
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: TLS_OPTS.merge(ca_file: CA_FILE),
-    )
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_bad_hostname_verify_none_no_ca_passes
-    @ldap.host = '127.0.0.1'
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: { verify_mode: OpenSSL::SSL::VERIFY_NONE },
-    )
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_bad_hostname_verify_none_no_ca_opt_merge_passes
-    @ldap.host = '127.0.0.1'
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: TLS_OPTS.merge(verify_mode: OpenSSL::SSL::VERIFY_NONE),
-    )
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_bad_hostname_verify_peer_ca_fails
-    @ldap.host = '127.0.0.1'
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: { verify_mode: OpenSSL::SSL::VERIFY_PEER,
-                     ca_file:     CA_FILE },
-    )
-    error = assert_raise Net::LDAP::Error,
-                         Net::LDAP::ConnectionRefusedError do
-      @ldap.bind BIND_CREDS
-    end
-    assert_equal(
-      "hostname \"#{@ldap.host}\" does not match the server certificate",
-      error.message,
-    )
-  end
-
-  def test_bind_tls_with_bad_hostname_ca_default_opt_merge_fails
-    @ldap.host = '127.0.0.1'
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: TLS_OPTS.merge(ca_file: CA_FILE),
-    )
-    error = assert_raise Net::LDAP::Error,
-                         Net::LDAP::ConnectionRefusedError do
-      @ldap.bind BIND_CREDS
-    end
-    assert_equal(
-      "hostname \"#{@ldap.host}\" does not match the server certificate",
-      error.message,
-    )
-  end
-
-  def test_bind_tls_with_bad_hostname_ca_no_opt_merge_fails
-    @ldap.host = '127.0.0.1'
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: { ca_file: CA_FILE },
-    )
-    error = assert_raise Net::LDAP::Error,
-                         Net::LDAP::ConnectionRefusedError do
-      @ldap.bind BIND_CREDS
-    end
-    assert_equal(
-      "hostname \"#{@ldap.host}\" does not match the server certificate",
-      error.message,
-    )
-  end
-
-  def test_bind_tls_with_valid_hostname_default_opts_passes
-    @ldap.host = 'localhost'
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: TLS_OPTS.merge(verify_mode: OpenSSL::SSL::VERIFY_PEER,
-                                  ca_file:     CA_FILE),
-    )
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_valid_hostname_just_verify_peer_ca_passes
-    @ldap.host = 'localhost'
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: { verify_mode: OpenSSL::SSL::VERIFY_PEER,
-                     ca_file:     CA_FILE },
-    )
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_bogus_hostname_system_ca_fails
-    @ldap.host = '127.0.0.1'
-    @ldap.encryption(method: :start_tls, tls_options: {})
-    error = assert_raise Net::LDAP::Error,
-                         Net::LDAP::ConnectionRefusedError do
-      @ldap.bind BIND_CREDS
-    end
-    assert_equal(
-      "hostname \"#{@ldap.host}\" does not match the server certificate",
-      error.message,
-    )
-  end
-
-  # The following depend on /etc/hosts hacking.
-  # We can do that on CI, but it's less than cool on people's dev boxes
-  def test_bind_tls_with_multiple_hosts
-    omit_unless ENV['TRAVIS'] == 'true'
-
-    @ldap.host = nil
-    @ldap.hosts = [['ldap01.example.com', 389], ['ldap02.example.com', 389]]
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: TLS_OPTS.merge(verify_mode: OpenSSL::SSL::VERIFY_PEER,
-                                  ca_file:     CA_FILE),
-    )
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_multiple_bogus_hosts
-    omit_unless ENV['TRAVIS'] == 'true'
-
-    @ldap.host = nil
-    @ldap.hosts = [['127.0.0.1', 389], ['bogus.example.com', 389]]
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: TLS_OPTS.merge(verify_mode: OpenSSL::SSL::VERIFY_PEER,
-                                  ca_file:     CA_FILE),
-    )
-    error = assert_raise Net::LDAP::Error,
-                         Net::LDAP::ConnectionError do
-      @ldap.bind BIND_CREDS
-    end
-    assert_equal("Unable to connect to any given server: ",
-                 error.message.split("\n").shift)
-  end
-
-  def test_bind_tls_with_multiple_bogus_hosts_no_verification
-    omit_unless ENV['TRAVIS'] == 'true'
-
-    @ldap.host = nil
-    @ldap.hosts = [['127.0.0.1', 389], ['bogus.example.com', 389]]
-    @ldap.encryption(
-      method:      :start_tls,
-      tls_options: TLS_OPTS.merge(verify_mode: OpenSSL::SSL::VERIFY_NONE),
-    )
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  def test_bind_tls_with_multiple_bogus_hosts_ca_check_only_fails
-    omit_unless ENV['TRAVIS'] == 'true'
-
-    @ldap.host = nil
-    @ldap.hosts = [['127.0.0.1', 389], ['bogus.example.com', 389]]
-    @ldap.encryption(
-      method: :start_tls,
-      tls_options: { ca_file: CA_FILE },
-    )
-    error = assert_raise Net::LDAP::Error,
-                         Net::LDAP::ConnectionError do
-      @ldap.bind BIND_CREDS
-    end
-    assert_equal("Unable to connect to any given server: ",
-                 error.message.split("\n").shift)
-  end
-
-  # This test is CI-only because we can't add the fixture CA
-  # to the system CA store on people's dev boxes.
-  def test_bind_tls_valid_hostname_system_ca_on_travis_passes
-    omit_unless ENV['TRAVIS'] == 'true'
-
-    @ldap.encryption(
-      method: :start_tls,
-      tls_options: { verify_mode: OpenSSL::SSL::VERIFY_PEER },
-    )
-    assert @ldap.bind(BIND_CREDS),
-           @ldap.get_operation_result.inspect
-  end
-
-  # Inverse of the above! Don't run this on Travis, only on Vagrant.
-  # Since Vagrant's hypervisor *won't* have the CA in the system
-  # x509 store, we can assume validation will fail
-  def test_bind_tls_valid_hostname_system_on_vagrant_fails
-    omit_if ENV['TRAVIS'] == 'true'
-
-    @ldap.encryption(
-      method: :start_tls,
-      tls_options: { verify_mode: OpenSSL::SSL::VERIFY_PEER },
-    )
-    error = assert_raise Net::LDAP::Error do
-      @ldap.bind BIND_CREDS
-    end
-    assert_equal(
-      "SSL_connect returned=1 errno=0 state=error: certificate verify failed",
-      error.message,
-    )
-  end
-end

data/test/integration/test_delete.rb

@@ -1,31 +0,0 @@
-require_relative '../test_helper'
-
-class TestDeleteIntegration < LDAPIntegrationTestCase
-  def setup
-    super
-    @ldap.authenticate "cn=admin,dc=rubyldap,dc=com", "passworD1"
-
-    @dn = "uid=delete-user1,ou=People,dc=rubyldap,dc=com"
-
-    attrs = {
-      objectclass: %w(top inetOrgPerson organizationalPerson person),
-      uid:  "delete-user1",
-      cn:   "delete-user1",
-      sn:   "delete-user1",
-      mail: "delete-user1@rubyldap.com",
-    }
-    unless @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject)
-      assert @ldap.add(dn: @dn, attributes: attrs), @ldap.get_operation_result.inspect
-    end
-    assert @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject)
-  end
-
-  def test_delete
-    assert @ldap.delete(dn: @dn), @ldap.get_operation_result.inspect
-    refute @ldap.search(base: @dn, scope: Net::LDAP::SearchScope_BaseObject)
-
-    result = @ldap.get_operation_result
-    assert_equal Net::LDAP::ResultCodeNoSuchObject, result.code
-    assert_equal Net::LDAP::ResultStrings[Net::LDAP::ResultCodeNoSuchObject], result.message
-  end
-end