ruby-ldap3 0.10.0

data/test/bind-ldaps.rb

@@ -0,0 +1,25 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+case LDAP::LDAP_VENDOR_NAME
+when /^OpenLDAP/i
+  # false means we use SSL connection.
+  conn = LDAP::SSLConn.new($HOST, $SSLPORT, false)
+when /^Netscape/i
+  conn = LDAP::SSLConn.new($HOST, $SSLPORT,
+                           false, File.expand_path("~/.netscape/cert7.db"))
+  conn.set_option(LDAP::LDAP_OPT_PROTOCOL_VERSION, 3)
+else
+  raise(RuntimeError, "unknown vendor")
+end
+
+v = conn.get_option(LDAP::LDAP_OPT_PROTOCOL_VERSION)
+printf("protocol version = #{v}\n")
+
+conn.bind{
+  conn.perror("bind")
+}

data/test/bind-sasl.rb

@@ -0,0 +1,17 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+cred = "secret"
+
+conn = LDAP::Conn.new($HOST, $PORT)
+
+v = conn.get_option(LDAP::LDAP_OPT_PROTOCOL_VERSION)
+printf("protocol version = #{v}\n")
+
+conn.sasl_bind(nil, LDAP::LDAP_SASL_SIMPLE, cred){
+  conn.perror("bind")
+}

data/test/bind-ssl.rb

@@ -0,0 +1,25 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+case LDAP::LDAP_VENDOR_NAME
+when /^OpenLDAP/i
+  # true means we use start_tls extension.
+  conn = LDAP::SSLConn.new($HOST, $PORT, true)
+when /^Netscape/i
+  conn = LDAP::SSLConn.new($HOST, $SSLPORT,
+                           false, File.expand_path("~/.netscape/cert7.db"))
+  conn.set_option(LDAP::LDAP_OPT_PROTOCOL_VERSION, 3)
+else
+  raise(RuntimeError, "unknown vendor")
+end
+
+v = conn.get_option(LDAP::LDAP_OPT_PROTOCOL_VERSION)
+printf("protocol version = #{v}\n")
+
+conn.bind{
+  conn.perror("bind")
+}

data/test/bind.rb

@@ -0,0 +1,34 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+conn = LDAP::Conn.new($HOST, $PORT)
+conn.set_option(LDAP::LDAP_OPT_PROTOCOL_VERSION, 3)
+conn.bind{
+  conn.perror("bind")
+  if( defined?(LDAP::LDAP_OPT_HOST_NAME) &&
+      defined?(LDAP::LDAP_OPT_PROTOCOL_VERSION) &&
+      defined?(LDAP::LDAP_OPT_API_INFO) ) # checking for LDAPv3 API
+    host = conn.get_option(LDAP::LDAP_OPT_HOST_NAME)
+    proto = conn.get_option(LDAP::LDAP_OPT_PROTOCOL_VERSION)
+    begin
+      info = conn.get_option(LDAP::LDAP_OPT_API_INFO)
+    rescue LDAP::Error
+      info = nil
+    end
+    print("host = #{host}, proto = #{proto}\n",
+          "info.protocol_version = #{info.protocol_version}\n")
+  end
+}
+
+begin
+  conn.bind
+rescue LDAP::InvalidDataError
+  $ok = true
+end
+if( ! $ok )
+  raise(RuntimeError, "multiple bind calls")
+end

data/test/compare.rb

@@ -0,0 +1,17 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+LDAP::Conn.new($HOST, $PORT).bind{|conn|
+  conn.perror("bind")
+  begin
+    conn.compare("cn=Takaaki Tateishi, dc=localhost, dc=localdomain",
+                 "cn", "Takaaki Tateishi")
+  rescue LDAP::ResultError
+    exit(0)
+  end
+  exit(1)
+}

data/test/conf.rb

@@ -0,0 +1,12 @@
+# -*- ruby -*-
+
+require './ldap'
+
+$HOST = 'localhost'
+begin
+  $PORT = ARGV[0].to_i || LDAP::LDAP_PORT
+  $SSLPORT = ARGV[1].to_i || LDAP::LDAPS_PORT
+rescue
+  $PORT = LDAP::LDAP_PORT
+  $SSLPORT = LDAP::LDAPS_PORT
+end

data/test/delete.rb

@@ -0,0 +1,13 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+conn = LDAP::Conn.new($HOST, $PORT)
+conn.bind('cn=root, dc=localhost, dc=localdomain','secret'){
+  conn.perror("bind")
+  conn.delete("cn=Takaaki-Tateishi, dc=localhost, dc=localdomain")
+  conn.perror("delete")
+}

data/test/ext.rb

@@ -0,0 +1,49 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+conn = LDAP::Conn.new($HOST, $PORT)
+conn.bind('cn=root, dc=localhost, dc=localdomain','secret'){
+  conn.perror("bind")
+  begin
+    (1..200).each{|i|
+      entry = {
+        'objectclass' => ['top', 'person'],
+        'cn'          => ["User #{i}"],
+        'sn'          => ["user#{i}"],
+      }
+      conn.add("cn=User #{i}, dc=localhost, dc=localdomain", entry)
+    }
+  rescue LDAP::ResultError
+    conn.perror("add")
+    exit(1)
+  end
+  conn.perror("add")
+
+  if( !defined?(conn.search_ext) )
+    exit(0)
+  end
+
+  users = []
+  begin
+    conn.search_ext("dc=localhost, dc=localdomain",
+                    LDAP::LDAP_SCOPE_SUBTREE,
+                    "(&(objectclass=*)(cn=User*))",
+                    nil, false,    # attrs, attrsonly
+                    nil, nil,      # serverctrls, clientctrls
+                    0, 0,          # sec, usec
+                    100){|e|       # sizelimit
+      users.push(e.vals("sn"))
+    }
+  rescue LDAP::ResultError
+    conn.perror("search_ext")
+    if( conn.err == LDAP::LDAP_SIZELIMIT_EXCEEDED )
+      exit(0)
+    else
+      exit(1)
+    end
+  end
+}

data/test/misc1.rb

@@ -0,0 +1,49 @@
+# -*- ruby -*-
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+def admin_bind
+  @ldap_conn.bind("cn=root, dc=localhost, dc=localdomain", 'secret')
+end
+
+#test method goes here
+
+def add_ou(agency)
+  #creates an organizational unit and places an agency inside
+  begin
+    entry = {
+      'objectclass' => ['organizationalUnit'],
+      'ou'          => [agency]
+    }
+    admin_bind.add("ou=#{entry['ou'][0]}, dc=localhost, dc=localdomain", entry)
+    return(true)
+  rescue LDAP::ResultError => error
+    return(false)
+  end
+end
+
+def delete_ou(agency)
+  #removes an agency organizational unit
+  begin
+    admin_bind.delete("ou=#{agency}, dc=localhost, dc=localdomain")
+    return(true)
+  rescue LDAP::ResultError => error
+    return(false)
+  end
+end
+
+@ldap_conn = LDAP::Conn.new($HOST, $PORT)
+
+p LDAP::VERSION
+begin
+  (1..1000).each do |count|
+    p count
+    p add_ou("an_agency")
+    p delete_ou("an_agency")
+  end
+rescue LDAP::Error
+  exit(0)
+end
+exit(1)

data/test/misc2.rb

@@ -0,0 +1,40 @@
+# -*- ruby -*-
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+def add_ou(agency)
+  #creates an organizational unit and places an agency inside
+  begin
+    entry = {
+      'objectclass' => ['organizationalUnit'],
+      'ou'          => [agency]
+    }
+    @ldap_conn.add("ou=#{entry['ou'][0]}, dc=localhost, dc=localdomain", entry)
+    return(true)
+  rescue LDAP::ResultError => error
+    return(false)
+  end
+end
+
+def delete_ou(agency)
+  #removes an agency organizational unit
+  begin
+    @ldap_conn.delete("ou=#{agency}, dc=localhost, dc=localdomain")
+    return(true)
+  rescue LDAP::ResultError => error
+    return(false)
+  end
+end
+
+@ldap_conn = LDAP::Conn.new($HOST, $PORT)
+@ldap_conn.bind("cn=root, dc=localhost, dc=localdomain", 'secret')
+
+p LDAP::VERSION
+(1..100).each do |count|
+  p count
+  p add_ou("an_agency")
+  p delete_ou("an_agency")
+  GC.start
+end

data/test/modrdn.rb

@@ -0,0 +1,23 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+conn = LDAP::Conn.new($HOST, $PORT)
+
+begin
+  conn.bind('cn=root, dc=localhost, dc=localdomain','seret')
+rescue LDAP::ResultError => e
+  $stderr.print("#{e.inspect} ... expected.\n")
+  conn.bind('cn=root, dc=localhost, dc=localdomain','secret'){
+    conn.perror("bind")
+    conn.modrdn("cn=Takaaki Tateishi, dc=localhost, dc=localdomain",
+                "cn=Takaaki-Tateishi",
+                true)
+    conn.perror("modrdn")
+  }
+  exit(0)
+end
+exit(1)

data/test/moz_cert.rb

@@ -0,0 +1,104 @@
+#!/usr/bin/ruby
+
+require 'rubygems'
+require 'ldap'
+require 'optparse'
+require 'pp'
+
+options = {
+  :host   => 'localhost',
+  :port   => '389',
+  :scope  => 'base',
+  :filter => '(objectclass=*)',
+  :key_pw => ''
+}
+
+optparse = OptionParser.new do |opts|
+  opts.on("-P", "--certpath [CERTFILE]", "cert8 path") do |cp|
+    options[:cp] = cp
+  end
+
+  opts.on("-N", "--certname [CERTNAME]", "certificate name") do |opt|
+    options[:cn] = opt
+  end
+
+  opts.on("-W", "--keypassword PASSWORD", "key password") do |opt|
+    options[:key_pw] = opt
+  end
+
+  opts.on("-h", "--host HOST", "server hostname") do |host|
+    options[:host] = host
+  end
+
+  opts.on("-p", "--port PORT", "server port") do |opt|
+    options[:port] = opt
+  end
+
+  opts.on("-b", "--base [BASE]", "search base") do |opt|
+    options[:base] = opt
+  end
+
+  opts.on("-s", "--scope SCOPE", "search scope") do |opt|
+    options[:scope] = opt
+  end
+
+  opts.on("-f", "--filter FILTER", "search filter") do |opt|
+    options[:filter] = opt
+  end
+
+  opts.on("-a", "--attributes ATTRS", "attrs to return") do |opt|
+    options[:attrs] = opt.split(/ *, */)
+  end
+
+  opts.on("--help") do |opt|
+    puts opts
+    exit 0
+  end
+end
+
+optparse.parse!
+
+required_keys = [:cp, :cn, :base]
+if (required_keys - options.keys).length > 0
+  puts "Some options are missing."
+  puts optparse
+  exit 1
+end
+
+options[:scope] = case options[:scope]
+when "sub"
+  LDAP::LDAP_SCOPE_SUBTREE
+when "one"
+  LDAP::LDAP_SCOPE_ONELEVEL
+else
+  LDAP::LDAP_SCOPE_BASE
+end
+
+raise ArgumentError.new("cert file's missing") unless (File.exists? options[:cp])
+
+#Signal.trap("INT") { puts("INT"); exit(2); }
+
+# Connect
+conn = LDAP::SSLAuthConn.new(options[:host], options[:port].to_i, true, 
+                File.expand_path(options[:cp]), options[:cn], options[:key_pw])
+conn.set_option(LDAP::LDAP_OPT_PROTOCOL_VERSION, 3)
+
+
+# oid = '2.16.840.1.113730.3.4.15' # get bound DN
+# bindctls = [LDAP::Control.new(oid, "", false)]
+# pass bindctls as argument to bind()
+
+begin
+  conn.bind
+
+  results = {}
+  conn.search(options[:base], options[:scope], options[:filter], options[:attrs], false, 10) do |entry|
+    results[entry.dn] = entry.to_hash
+  end
+
+  pp results
+rescue LDAP::ResultError => e
+  puts "error: #{e.to_s}"
+end
+
+exit 0

data/test/search.rb

@@ -0,0 +1,20 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+LDAP::Conn.new($HOST, $PORT).bind{|conn|
+  conn.perror("bind")
+  begin
+    conn.search("dc=localhost, dc=localdomain",
+                LDAP::LDAP_SCOPE_SUBTREE,
+                "(objectclass=*)"){|e|
+      p e.vals("cn")
+      p e.to_hash()
+    }
+  rescue LDAP::ResultError => msg
+    $stderr.print(msg)
+  end
+}

data/test/search2.rb

@@ -0,0 +1,34 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+sorter = proc{|s1,s2|
+  print("sorter: #{s1} <=> #{s2}\n")
+  s1<=>s2
+}
+
+LDAP::Conn.new($HOST, $PORT).bind{|conn|
+  conn.perror("bind")
+  sub = nil
+  conn.search("dc=localhost, dc=localdomain", LDAP::LDAP_SCOPE_SUBTREE,
+              "(objectclass=*)", nil, false, 0, 0, "sn", sorter){|e|
+    dn = e.dn
+    print("# #{LDAP.dn2ufn(dn)}\n")
+    print("dn: #{dn}\n")
+    e.attrs.each{|attr|
+      print("#{attr}: #{e.vals(attr).join(', ')}\n")
+    }
+    print("\n")
+    sub = e if !sub
+  }
+
+  begin
+    sub.dn
+  rescue LDAP::InvalidEntryError => e
+    $stderr.print("#{e.to_s}.\n",
+                  "This exception is expected.\n")
+  end
+}

data/test/search3.rb

@@ -0,0 +1,23 @@
+# -*- ruby -*-
+# This file is a part of test scripts of LDAP extension module.
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+
+$KCODE = "UTF8"
+
+conn = LDAP::Conn.new($HOST, $PORT)
+conn.perror("bind")
+conn.bind{
+  # search2 returns an array of hash
+  print("search2 without a block:\n")
+  conn.search2("dc=localhost, dc=localdomain", LDAP::LDAP_SCOPE_SUBTREE,
+               "(objectclass=*)", nil, false, 0, 0).each{|ent|
+    ent.each{|attr,vals|
+      print("#{attr}: #{vals.join(', ')}\n")
+    }
+    print("\n")
+  }
+  GC.start()
+}

data/test/setup.rb

@@ -0,0 +1,38 @@
+# $Id: setup.rb,v 1.3 2005/03/13 10:10:56 ianmacd Exp $
+#
+# Basic set-up for performing LDAP unit tests.
+
+require 'ldap'
+require 'ldap/schema'
+require 'test/unit'
+
+class TC_LDAPTest < Test::Unit::TestCase
+
+  @@conn = nil
+
+  # Get the LDAP host and base DN from /etc/ldap.conf.
+  def setup
+    unless @@conn && @@conn.bound?
+      File.open( '/etc/ldap.conf' ) do |f|
+        while line = f.gets
+          if line =~ /^host\s+(\S+)$/
+            @@host = $1
+            break
+          elsif line =~ /^base\s+(\S+)$/
+            @@base = $1
+            break
+          end
+        end
+      end
+
+      @@conn = LDAP::Conn.new( @@host )
+      @@conn.set_option( LDAP::LDAP_OPT_PROTOCOL_VERSION, 3 )
+      @@conn.bind
+      @@root_dse = @@conn.root_dse[0]
+      @@naming_context = @@root_dse['namingContexts'][0]
+    end
+  end
+
+  undef_method :default_test
+    
+end

data/test/subschema.rb

@@ -0,0 +1,21 @@
+
+$test = File.dirname($0)
+require "#{$test}/conf"
+require "./ldap"
+require "#{$test}/../lib/ldap/schema"
+
+conn = LDAP::Conn.new($HOST, $PORT)
+conn.bind{
+  schema = conn.schema()
+  p schema.must("person")
+  p schema.attr("person", "MUST")
+  p schema.may("person")
+  p schema.attr("person", "MAY")
+  p schema.sup("person")
+  p schema.attr("person", "SUP")
+  schema.each{|key,vals|
+    vals.each{|val|
+      print("#{key}: #{val}\n")
+    }
+  }
+}

data/test/tc_conn.rb

@@ -0,0 +1,123 @@
+# $Id: tc_conn.rb,v 1.3 2005/03/15 01:43:59 ianmacd Exp $
+#
+# A suite of unit tests for testing Ruby/LDAP connection functionality.
+
+require 'ldap'
+require 'test/unit'
+require './setup'
+
+class TC_ConnectionTest < TC_LDAPTest
+
+  # Ensure that rebinding works.
+  #
+  def test_rebind
+    id = @@conn.object_id
+
+    assert_nothing_raised do
+      @@conn.unbind
+      @@conn.bind
+    end
+
+    id2 = @@conn.object_id
+    assert_equal( id, id2 )
+
+    assert_nothing_raised do
+      @@conn.unbind
+      @@conn.simple_bind
+    end
+
+    id2 = @@conn.object_id
+    assert_equal( id, id2 )
+  end
+
+  def test_double_bind
+    assert_raises( LDAP::Error ) { @@conn.bind }
+    assert_raises( LDAP::Error ) { @@conn.simple_bind }
+  end
+
+  def test_double_unbind
+    assert_nothing_raised { @@conn.unbind }
+    assert_raises( LDAP::InvalidDataError ) { @@conn.unbind }
+  end
+
+  def test_bound?
+    assert( @@conn.bound? )
+    @@conn.unbind
+    assert( ! @@conn.bound? )
+  end
+
+  def test_sasl_bind
+    @@conn = LDAP::Conn.new( @@host )
+    @@conn.sasl_quiet = true
+    
+    assert_nothing_raised { @@conn.sasl_bind( '', '' ) }
+    
+    @@conn = nil
+  end
+
+  def test_double_sasl_bind
+    @@conn = LDAP::Conn.new( @@host )
+    @@conn.sasl_quiet = true
+
+    assert_nothing_raised { @@conn.sasl_bind( '', '' ) }
+    assert_raises( LDAP::Error ) { @@conn.sasl_bind( '', '' ) }
+
+    @@conn = nil
+  end
+
+  def test_sasl_rebind
+    @@conn = LDAP::Conn.new( @@host )
+    @@conn.sasl_quiet = true
+
+    id = @@conn.object_id
+
+    assert_nothing_raised do
+      @@conn.unbind
+      @@conn.sasl_bind( '', '' )
+    end
+
+    id2 = @@conn.object_id
+    assert_equal( id, id2 )
+
+    @@conn = nil
+  end
+
+  def test_ssl_rebind
+    @@conn = LDAP::SSLConn.new( @@host, LDAP::LDAPS_PORT )
+
+    id = @@conn.object_id
+
+    assert_nothing_raised do
+      @@conn.bind
+      @@conn.unbind
+      @@conn.bind
+    end
+
+    id2 = @@conn.object_id
+    assert_equal( id, id2 )
+
+    @@conn = nil
+  end
+
+  def test_ssl_open
+    assert_raises( NotImplementedError ) { LDAP::SSLConn.open( @@host ) }
+  end
+
+  def test_ssl_starttls_rebind
+    @@conn = LDAP::SSLConn.new( @@host, LDAP::LDAP_PORT, true )
+
+    id = @@conn.object_id
+
+    assert_nothing_raised do
+      @@conn.bind
+      @@conn.unbind
+      @@conn.bind
+    end
+
+    id2 = @@conn.object_id
+    assert_equal( id, id2 )
+
+    @@conn = nil
+  end
+
+end