treequel 1.0.0

data/examples/ldap-monitor/views/databases.erb

@@ -0,0 +1,39 @@
+<h2>Databases</h2>
+
+<p><%= subsystem[:description ]%></p>
+
+<table id="database-list" class="horizontal">
+	<thead>
+	<tr>
+		<th></th>
+		<th class="even">Shadow?</th>
+		<th class="odd">URI</th>
+		<th class="even">See Also</th>
+	</tr>
+	</thead>
+	<tbody>
+	<% databases.each_with_index do |database, i| %>
+	<% rowclass = i.divmod(2).last.zero? ? "even" : "odd" %>
+	<tr class="<%= rowclass %>">
+		<th><%= database[:monitoredInfo] %></th>
+		<td class="even icon">
+			<% if database[:monitorIsShadow].first == 'TRUE' %>
+			<img src="/images/tick.png" width="16" height="16" alt="Yes" />
+			<% else %>
+			&nbsp;
+			<% end %>
+		</td>
+		<td class="odd list">
+			<% if database[:labeledURI] %>
+				<span class="uri"><%= database[:labeledURI].first.gsub(/[^\x20-\x7f]/, '') %></span>
+			<% end %>
+		</td>
+		<td class="even">
+			<% if database[:seeAlso] %><span class="dn"><%= database[:seeAlso] %></span><% end %>
+		</td>
+	</tr>
+	<% end %>
+	</tbody>
+</table>
+
+

data/examples/ldap-monitor/views/dump_subsystem.erb

@@ -0,0 +1,14 @@
+<h2>The <%= h subsystem[:cn] %> Subsystem</h2>
+
+<p><%= subsystem[:description].join(' ') %></p>
+
+<h3>Subsystem</h3>
+<pre><%= subsystem.to_ldif %></pre>
+
+<h3>Contents</h3>
+<dl>
+<% contents.each do |branch| %>
+	<dt><%= branch.dn %></dt>
+	<dd><pre><%= branch.to_ldif %></pre></dd>
+<% end %>
+</dl>

data/examples/ldap-monitor/views/index.erb

@@ -0,0 +1,14 @@
+<h2>Monitor Datapoints</h2>
+
+<p>This server is running: <code><%= server_info %></code>.</p>
+
+<p>Monitor Subsystems</p>
+
+<dl>
+<% for subsystem in datapoints.sort_by {|b| b[:cn].first } %>
+	<dt><a href="/<%= subsystem[:cn].first.downcase %>"><%= h subsystem[:cn].first %></a></dt>
+	<dd><%= h subsystem[:description].join(" ") %></dd>
+<% end %>
+</dl>
+
+

data/examples/ldap-monitor/views/layout.erb

@@ -0,0 +1,35 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
+	"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+	<meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>
+	<title>LDAP Web Monitor</title>
+
+	<link rel="icon" type="image/png" href="/images/treequel-favicon.png" />
+
+	<link rel="stylesheet" href="/css/master.css" type="text/css" media="screen" title="master" 
+		charset="utf-8">
+</head>
+<body>
+
+	<div id="content">
+		<h1>LDAP Web Monitor</h1>
+
+		<div id="homelink">
+			<a href="/">&#x2191; Top</a>
+		</div>
+
+		<%= yield %>
+
+	</div>
+
+	<div id="footer">
+		<p>
+			<span class="name">Treequel LDAP Web Monitor</span>
+			<span class="vcsrev">$rev$</span>
+		</p>
+	</div>
+
+</body>
+</html>

data/examples/ldap-monitor/views/listeners.erb

@@ -0,0 +1,30 @@
+<h2>Listeners</h2>
+
+<p><%= subsystem[:description ]%></p>
+
+<table id="listener-list" class="horizontal">
+	<thead>
+	<tr>
+		<th></th>
+		<th class="odd">URI</th>
+		<th class="even">Socket</th>
+	</tr>
+	</thead>
+	<tbody>
+	<% listeners.each_with_index do |listener, i| %>
+	<% rowclass = i.divmod(2).last.zero? ? "even" : "odd" %>
+	<tr class="<%= rowclass %>">
+		<th><%= listener[:monitoredInfo] %></th>
+		<td class="even icon">
+			<span class="uri"><%= listener[:labeledURI].first.gsub(/[^\x20-\x7f]/, '') %></span>
+		</td>
+		<td class="odd list">
+			<span class="socket"><%= 
+				listener[:monitorConnectionLocalAddress].first[/IP=(.*)/, 1] %></span>
+		</td>
+	</tr>
+	<% end %>
+	</tbody>
+</table>
+
+

data/examples/ldap_state.rb

@@ -0,0 +1,62 @@
+#!/usr/bin/env ruby
+# vim: set nosta noet ts=4 sw=4:
+
+# Use the OpenLDAP monitoring interface (cn=Monitor) to poll a collection of LDAP
+# servers for collection information. See 
+# 
+#   http://www.openldap.org/doc/admin24/monitoringslapd.html 
+# 
+# for details on how to set your servers up with this interface.
+# 
+# Original ruby-ldap version by Mahlon E. Smith.
+# Ported to Treequel by Michael Granger
+
+BEGIN {
+	require 'pathname'
+	basedir = Pathname( __FILE__ ).dirname.parent
+	libdir = basedir + 'lib'
+
+	$LOAD_PATH.unshift( libdir.to_s )
+}
+
+require 'rubygems'
+require 'treequel'
+
+BIND_DN = 'cn=admin,cn=Monitor'
+BIND_PASS = 'XXX'
+
+SERVER_LIST = %w{
+	ldap1.acme.com
+	ldap2.acme.com
+	ldap3.acme.com
+}
+
+Treequel::Branch.include_operational_attrs = true
+
+total_connections = 0
+total_operations  = 0
+
+SERVER_LIST.each do |server|
+	con = ops = 0
+	dir = Treequel.directory( :host => server, :base_dn => 'cn=Monitor' )
+
+	conns = dir.cn( :connections ).filter( :objectClass => :monitorConnection ).
+	select( :monitorConnectionNumber, :monitorConnectionOpsExecuting )
+
+	dir.bound_as( BIND_DN, BIND_PASS ) do
+		con = conns.all.length
+		ops = conns.map( :monitorConnectionOpsExecuting ).
+			collect {|connops| connops.first.to_i }.
+			inject  {|sum,connops| sum + connops }
+
+		puts "LDAP server: %s\n\t%s\n\tServing %d operations across %d clients\n\n" % [
+			server, dir[:monitoredInfo], ops, con
+		]
+	end
+
+	total_connections = total_connections + con
+	total_operations  = total_operations  + ops
+end
+
+puts "\n%d active operations across %d clients\n" % [ total_operations, total_connections ]
+

data/lib/treequel.rb

@@ -0,0 +1,145 @@
+#!/usr/bin/env ruby
+
+require 'logger'
+require 'uri'
+require 'uri/ldap'
+
+
+### Add an LDAPS URI type if none exists (ruby pre 1.8.7)
+unless URI.const_defined?( :LDAPS )
+	module URI
+		class LDAPS < LDAP
+			DEFAULT_PORT = 636
+		end
+		@@schemes['LDAPS'] = LDAPS
+	end
+end
+
+
+# A library for interacting with LDAP modelled after Sequel.
+#
+# == Authors
+#
+# * Michael Granger <ged@FaerieMUD.org>
+# * Mahlon E. Smith <mahlon@martini.nu>
+#
+# :include: LICENSE
+#
+#--
+#
+# Please see the file LICENSE in the base directory for licensing details.
+#
+module Treequel
+
+	# Library version
+	VERSION = '1.0.0'
+
+	# VCS revision
+	REVISION = %q$rev: e352bc86498a $
+
+	# Load the logformatters and some other stuff first
+	require 'treequel/constants'
+	require 'treequel/utils'
+
+	include Treequel::Constants
+
+
+	### Logging
+	@default_logger = Logger.new( $stderr )
+	@default_logger.level = $DEBUG ? Logger::DEBUG : Logger::WARN
+
+	@default_log_formatter = Treequel::LogFormatter.new( @default_logger )
+	@default_logger.formatter = @default_log_formatter
+
+	@logger = @default_logger
+
+
+	class << self
+		# The log formatter that will be used when the logging subsystem is reset
+		attr_accessor :default_log_formatter
+
+		# The logger that will be used when the logging subsystem is reset
+		attr_accessor :default_logger
+
+		# The logger that's currently in effect
+		attr_accessor :logger
+		alias_method :log, :logger
+		alias_method :log=, :logger=
+	end
+
+
+	### Reset the global logger object to the default
+	def self::reset_logger
+		self.logger = self.default_logger
+		self.logger.level = Logger::WARN
+		self.logger.formatter = self.default_log_formatter
+	end
+
+
+	### Returns +true+ if the global logger has not been set to something other than
+	### the default one.
+	def self::using_default_logger?
+		return self.logger == self.default_logger
+	end
+
+
+	### Return the library's version string
+	def self::version_string( include_buildnum=false )
+		vstring = "%s %s" % [ self.name, VERSION ]
+		vstring << " (build %s)" % [ REVISION ] if include_buildnum
+		return vstring
+	end
+
+	### Create a Treequel::Directory object, either from a Hash of options or an LDAP URL.
+	def self::directory( *args )
+		options = {}
+
+		args.each do |arg|
+			case arg
+			when String, URI
+				options.merge!( self.make_options_from_uri(arg) )
+			when Hash
+				options.merge!( arg )
+			else
+				raise ArgumentError, "unknown directory option %p: expected URL or Hash"
+			end
+		end
+
+		return Treequel::Directory.new( options )
+	end
+
+
+	### Make an options hash suitable for passing to Treequel::Directory.new from the
+	### given +uri+.
+	def self::make_options_from_uri( uri )
+		uri = URI( uri ) unless uri.is_a?( URI )
+		raise ArgumentError, "not an LDAP URL: %p" % [ uri ] unless
+			uri.scheme =~ /ldaps?/
+		options = {}
+
+		if uri.port
+			options[:port] = uri.port
+		elsif uri.scheme == 'ldaps'
+			options[:port] = LDAP::LDAPS_PORT
+		end
+
+		options[:connect_type] = :ssl if uri.scheme == 'ldaps'
+
+		options[:host]    = uri.host if uri.host
+		options[:base_dn] = uri.dn unless uri.dn.nil? || uri.dn.empty?
+		options[:bind_dn] = uri.user if uri.user
+		options[:pass]    = uri.password if uri.password
+
+		return options
+	end
+
+	# Now load the rest of the library
+	require 'treequel/exceptions'
+	require 'treequel/directory'
+	require 'treequel/branch'
+	require 'treequel/branchset'
+	require 'treequel/filter'
+
+end # module Treequel
+
+

data/lib/treequel/branch.rb

@@ -0,0 +1,589 @@
+#!/usr/bin/env ruby
+
+require 'forwardable'
+require 'ldap'
+require 'ldap/ldif'
+
+require 'treequel'
+require 'treequel/mixins'
+require 'treequel/constants'
+require 'treequel/branchset'
+require 'treequel/branchcollection'
+
+
+# The object in Treequel that wraps an entry. It knows how to construct other branches
+# for the entries below itself, and how to search for those entries.
+#
+# == Authors
+#
+# * Michael Granger <ged@FaerieMUD.org>
+# * Mahlon E. Smith <mahlon@martini.nu>
+#
+# :include: LICENSE
+#
+#--
+#
+# Please see the file LICENSE in the base directory for licensing details.
+#
+class Treequel::Branch
+	include Comparable,
+	        Treequel::Loggable,
+	        Treequel::Constants
+
+	extend Treequel::Delegation,
+	       Treequel::AttributeDeclarations
+
+
+
+	#################################################################
+	###	C L A S S   M E T H O D S
+	#################################################################
+
+	# Whether or not to include operational attributes when fetching the entry for branches.
+	class << self
+		extend Treequel::AttributeDeclarations
+		@include_operational_attrs = false
+		predicate_attr :include_operational_attrs
+	end
+
+
+	### Create a new Treequel::Branch from the given +entry+ hash from the specified +directory+.
+	def self::new_from_entry( entry, directory )
+		return self.new( directory, entry['dn'].first, entry )
+	end
+
+
+	#################################################################
+	###	I N S T A N C E   M E T H O D S
+	#################################################################
+
+	### Create a new Treequel::Branch with the given +directory+, +rdn_attribute+, +rdn_value+, and
+	### +base_dn+. If the optional +entry+ object is given, it will be used to fetch values from
+	### the directory; if it isn't provided, it will be fetched from the +directory+ the first
+	### time it is needed.
+	def initialize( directory, dn, entry=nil )
+		raise ArgumentError, "invalid DN" unless dn.match( Patterns::DISTINGUISHED_NAME )
+		raise ArgumentError, "can't cast a %s to an LDAP::Entry" % [entry.class.name] unless
+			entry.nil? || entry.is_a?( Hash )
+
+		@directory = directory
+		@dn        = dn
+		@entry     = entry
+
+		@include_operational_attrs = self.class.include_operational_attrs?
+
+		@values    = {}
+	end
+
+
+	######
+	public
+	######
+
+	# Delegate some other methods to a new Branchset via the #branchset method
+	def_method_delegators :branchset, :filter, :scope, :select, :limit, :timeout, :order
+
+
+	# The directory the branch's entry lives in
+	attr_reader :directory
+
+	# The DN of the branch
+	attr_reader :dn
+	alias_method :to_s, :dn
+
+	# Whether or not to include operational attributes when fetching the Branch's entry
+	predicate_attr :include_operational_attrs
+
+
+	### Change the DN the Branch uses to look up its entry.
+
+	def dn=( newdn )
+		self.clear_caches
+		@dn = newdn
+	end
+
+
+	### Enable or disable fetching of operational attributes (RC4512, section 3.4).
+	def include_operational_attrs=( new_setting )
+		self.clear_caches
+		@include_operational_attrs = new_setting ? true : false
+	end
+
+
+	### Return the attribute/s which make up this Branch's RDN.
+	def rdn_attributes
+		return make_rdn_hash( self.rdn )
+	end
+
+
+	### Return the LDAP::Entry associated with the receiver, fetching it from the
+	### directory if necessary. Returns +nil+ if the entry doesn't exist in the
+	### directory.
+	def entry
+		unless @entry
+			if self.include_operational_attrs?
+				@entry = self.directory.get_extended_entry( self )
+			else
+				@entry = self.directory.get_entry( self )
+			end
+		end
+
+		return @entry
+	end
+
+
+	### Returns <tt>true</tt> if there is an entry currently in the directory with the
+	### branch's DN.
+	def exists?
+		return self.entry ? true : false
+	end
+
+
+	### Return the RDN of the branch.
+	def rdn
+		return self.split_dn( 2 ).first
+	end
+
+
+	### Return the receiver's DN as an Array of attribute=value pairs. If +limit+ is non-zero, 
+	### only the <code>limit-1</code> first pairs are split from the DN, and the remainder 
+	### will be returned as the last element.
+	def split_dn( limit=0 )
+		return self.dn.split( /\s*,\s*/, limit )
+	end
+
+
+	### Return the LDAP URI for this branch
+	def uri
+		uri = self.directory.uri
+		uri.dn = self.dn
+		return uri
+	end
+
+
+	### Return the DN of this entry's parent, or nil if it doesn't have one.
+	def parent_dn
+		return nil if self.dn == self.directory.base_dn
+		return self.split_dn( 2 ).last
+	end
+
+
+	### Return the Branch's immediate parent node.
+	def parent
+		return self.class.new( self.directory, self.parent_dn )
+	end
+
+
+	### Return the Branch's immediate children as Treeque::Branch objects.
+	def children
+		return self.directory.search( self, :one, '(objectClass=*)' )
+	end
+
+
+	### Return a Treequel::Branchset that will use the receiver as its base.
+	def branchset
+		return Treequel::Branchset.new( self )
+	end
+
+
+	### Return Treequel::Schema::ObjectClass instances for each of the receiver's
+	### objectClass attributes. If any +additional_classes+ are given, 
+	### merge them with the current list of the current objectClasses for the lookup.
+	def object_classes( *additional_classes )
+		schema = self.directory.schema
+
+		object_classes = self[:objectClass] || []
+		object_classes |= additional_classes.collect {|str| str.to_sym }
+		object_classes << :top if object_classes.empty?
+
+		return object_classes.
+			collect {|oid| schema.object_classes[oid.to_sym] }.
+			uniq
+	end
+
+
+	### Return Treequel::Schema::AttributeType instances for each of the receiver's
+	### objectClass's MUST attributeTypes. If any +additional_object_classes+ are given, 
+	### include the MUST attributeTypes for them as well. This can be used to predict what
+	### attributes would need to be present for the entry to be saved if it added the
+	### +additional_object_classes+ to its own.
+	def must_attribute_types( *additional_object_classes )
+		types = []
+		oclasses = self.object_classes( *additional_object_classes )
+		self.log.debug "Gathering MUST attribute types for %d objectClasses" % [ oclasses.length ]
+		oclasses.each do |oc|
+			self.log.debug "  adding %p from %p" % [ oc.must, oc ]
+			types |= oc.must
+		end
+
+		return types
+	end
+
+
+	### Return OIDs (numeric OIDs as Strings, named OIDs as Symbols) for each of the receiver's
+	### objectClass's MUST attributeTypes. If any +additional_object_classes+ are given, 
+	### include the OIDs of the MUST attributes for them as well. This can be used to predict 
+	### what attributes would need to be present for the entry to be saved if it added the
+	### +additional_object_classes+ to its own.
+	def must_oids( *additional_object_classes )
+		return self.object_classes( *additional_object_classes ).
+			collect {|oc| oc.must_oids }.flatten.uniq.reject {|val| val == '' }
+	end
+
+
+	### Return a Hash of the attributes required by the Branch's objectClasses. If 
+	### any +additional_object_classes+ are given, include the attributes that would be
+	### necessary for the entry to be saved with them.
+	def must_attributes_hash( *additional_object_classes )
+		attrhash = {}
+
+		self.must_attribute_types( *additional_object_classes ).each do |attrtype|
+			self.log.debug "  adding attrtype %p to the MUST attributes hash" % [ attrtype ]
+
+			if attrtype.name == :objectClass
+				attrhash[ :objectClass ] = [:top] | additional_object_classes
+			elsif attrtype.single?
+				attrhash[ attrtype.name ] = ''
+			else
+				attrhash[ attrtype.name ] = ['']
+			end
+		end
+
+		return attrhash
+	end
+
+
+	### Return Treequel::Schema::AttributeType instances for each of the receiver's
+	### objectClass's MAY attributeTypes. If any +additional_object_classes+ are given, 
+	### include the MAY attributeTypes for them as well. This can be used to predict what
+	### optional attributes could be added to the entry if the +additional_object_classes+ 
+	### were added to it.
+	def may_attribute_types( *additional_object_classes )
+		return self.object_classes( *additional_object_classes ).
+			collect {|oc| oc.may }.flatten.uniq
+	end
+
+
+	### Return OIDs (numeric OIDs as Strings, named OIDs as Symbols) for each of the receiver's
+	### objectClass's MAY attributeTypes. If any +additional_object_classes+ are given, 
+	### include the OIDs of the MAY attributes for them as well. This can be used to predict 
+	### what optional attributes could be added to the entry if the +additional_object_classes+ 
+	### were added to it.
+	def may_oids( *additional_object_classes )
+		return self.object_classes( *additional_object_classes ).
+			collect {|oc| oc.may_oids }.flatten.uniq
+	end
+
+
+	### Return a Hash of the optional attributes allowed by the Branch's objectClasses. If 
+	### any +additional_object_classes+ are given, include the attributes that would be
+	### available for the entry if it had them.
+	def may_attributes_hash( *additional_object_classes )
+		entry = self.entry
+		attrhash = {}
+
+		self.may_attribute_types( *additional_object_classes ).each do |attrtype|
+			self.log.debug "  adding attrtype %p to the MAY attributes hash" % [ attrtype ]
+
+			if attrtype.single?
+				attrhash[ attrtype.name ] = nil
+			else
+				attrhash[ attrtype.name ] = []
+			end
+		end
+
+		attrhash[ :objectClass ] |= additional_object_classes
+		return attrhash
+	end
+
+
+	### Return Treequel::Schema::AttributeType instances for the set of all of the receiver's
+	### MUST and MAY attributeTypes.
+	def valid_attribute_types
+		return self.must_attribute_types | self.may_attribute_types
+	end
+
+
+	### Return a uniqified Array of OIDs (numeric OIDs as Strings, named OIDs as Symbols) for
+	### the set of all of the receiver's MUST and MAY attributeTypes.
+	def valid_attribute_oids
+		return self.must_oids | self.may_oids
+	end
+
+
+	### Return a Hash of all the attributes allowed by the Branch's objectClasses. If
+	### any +additional_object_classes+ are given, include the attributes that would be
+	### available for the entry if it had them.
+	def valid_attributes_hash( *additional_object_classes )
+		must = self.must_attributes_hash( *additional_object_classes )
+		may  = self.may_attributes_hash( *additional_object_classes )
+
+		return may.merge( must )
+	end
+
+
+	### Return +true+ if the specified +attrname+ is a valid attributeType given the
+	### receiver's current objectClasses.
+	def valid_attribute?( attroid )
+		attroid = attroid.to_sym if attroid.is_a?( String ) &&
+			attroid !~ NUMERICOID
+
+		return self.valid_attribute_types.any? { |a| a.names.include?( attroid ) }
+	end
+
+
+	### Returns a human-readable representation of the object suitable for
+	### debugging.
+	def inspect
+		return "#<%s:0x%0x %s @ %s entry=%p>" % [
+			self.class.name,
+			self.object_id * 2,
+			self.dn,
+			self.directory,
+			@entry,
+		  ]
+	end
+
+
+	### Return the entry's DN as an RFC1781-style UFN (User-Friendly Name).
+	def to_ufn
+		return LDAP.dn2ufn( self.dn )
+	end
+
+
+	### Return the Branch as an LDAP::LDIF::Entry.
+	def to_ldif
+		ldif = "dn: %s\n" % [ self.dn ]
+
+		entry = self.entry || self.valid_attributes_hash
+
+		entry.keys.reject {|k| k == 'dn' }.each do |attribute|
+			entry[ attribute ].each do |val|
+				# self.log.debug "  creating LDIF fragment for %p=%p" % [ attribute, val ]
+				frag = LDAP::LDIF.to_ldif( attribute, [val.dup] )
+				# self.log.debug "  LDIF fragment is: %p" % [ frag ]
+				ldif << frag
+			end
+		end
+
+		return LDAP::LDIF::Entry.new( ldif )
+	end
+
+
+	### Fetch the value/s associated with the given +attrname+ from the underlying entry.
+	def []( attrname )
+		attrsym = attrname.to_sym
+
+		unless @values.key?( attrsym )
+			directory = self.directory
+			entry = self.entry or return nil
+			return nil unless (( value = entry[attrsym.to_s] ))
+
+			self.log.debug "  value is not cached; checking its attributeType"
+			if attribute = directory.schema.attribute_types[ attrsym ]
+				self.log.debug "  attribute exists; checking the entry for a value"
+
+				syntax_oid = attribute.syntax_oid
+
+				if attribute.single?
+					self.log.debug "    attributeType is SINGLE; unwrapping the Array"
+					@values[ attrsym ] = directory.convert_syntax_value( syntax_oid, value.first )
+				else
+					self.log.debug "    attributeType is not SINGLE; keeping the Array"
+					@values[ attrsym ] = value.collect do |raw|
+						directory.convert_syntax_value( syntax_oid, raw )
+					end
+					@values[ attrsym ].freeze if @values[ attrsym ].is_a?( Array )
+				end
+
+			else
+				self.log.info "no attributeType for %p" % [ attrsym ]
+				@values[ attrsym ] = value
+				@values[ attrsym ].freeze
+			end
+		else
+			self.log.debug "  value is cached."
+		end
+
+		return @values[ attrsym ]
+	end
+
+
+	### Set attribute +attrname+ to a new +value+.
+	def []=( attrname, value )
+		value = [ value ] unless value.is_a?( Array )
+		self.log.debug "Modifying %s to %p" % [ attrname, value ]
+		self.directory.modify( self, attrname.to_s => value )
+		@values.delete( attrname.to_sym )
+		self.entry[ attrname.to_s ] = value
+	end
+
+
+	### Make the changes to the entry specified by the given +attributes+.
+	def merge( attributes )
+		self.directory.modify( self, attributes )
+		self.clear_caches
+
+		return true
+	end
+	alias_method :modify, :merge
+
+
+	### Delete the entry associated with the branch from the directory.
+	def delete
+		self.directory.delete( self )
+		self.clear_caches
+
+		return true
+	end
+
+
+	### Create the entry for this Branch with the specified +attributes+. The +attributes+ should,
+	### at a minimum, contain the pair `:objectClass => :someStructuralObjectClass`.
+	def create( attributes={} )
+		self.directory.create( self, attributes )
+		return self
+	end
+
+
+	### Copy the entry for this Branch to a new entry with the given +newdn+ and merge in the
+	### specified +attributes+.
+	def copy( newdn, attributes={} )
+
+		# Fully-qualify RDNs
+		newdn = newdn + ',' + self.parent_dn unless newdn.index(',')
+
+		self.log.debug "Creating a copy of %p at %p" % [ self.dn, newdn ]
+		newbranch = self.class.new( self.directory, newdn )
+
+		attributes = self.entry.merge( attributes )
+
+		self.log.debug "  merged attributes: %p" % [ attributes ]
+		self.directory.create( newbranch, attributes )
+
+		return newbranch
+	end
+
+
+	### Move the entry associated with this branch to a new entry indicated by +rdn+. If 
+	### any +attributes+ are given, also replace the corresponding attributes on the new
+	### entry with them.
+	def move( rdn, attributes={} )
+		self.log.debug "Asking the directory to move me to an entry called %p" % [ rdn ]
+		return self.directory.move( self, rdn, attributes )
+	end
+
+
+	### Comparable interface: Returns -1 if other_branch is less than, 0 if other_branch is 
+	### equal to, and +1 if other_branch is greater than the receiving Branch.
+	def <=>( other_branch )
+		# Try the easy cases first
+		return nil unless other_branch.respond_to?( :dn ) &&
+			other_branch.respond_to?( :split_dn )
+		return 0 if other_branch.dn == self.dn
+
+		# Try comparing reversed attribute pairs
+		rval = nil
+		pairseq = self.split_dn.reverse.zip( other_branch.split_dn.reverse )
+		pairseq.each do |a,b|
+			comparison = (a <=> b)
+			return comparison if !comparison.nil? && comparison.nonzero?
+		end
+
+		# The branches are related, so directly comparing DN strings will work
+		return self.dn <=> other_branch.dn
+	end
+
+
+	### Fetch a new Treequel::Branch object for the child of the receiver with the specified
+	### +rdn+.
+	def get_child( rdn )
+		newdn = [ rdn, self.dn ].join( ',' )
+		return self.class.new( self.directory, newdn )
+	end
+
+
+	### Addition operator: return a Treequel::BranchCollection that contains both the receiver
+	### and +other_branch+.
+	def +( other_branch )
+		return Treequel::BranchCollection.new( self.branchset, other_branch.branchset )
+	end
+
+
+
+	#########
+	protected
+	#########
+
+	### Proxy method: if the first argument matches a valid attribute in the directory's
+	### schema, return a new Branch for the RDN made by using the first two arguments as
+	### attribute and value, and the remaining hash as additional attributes.
+	### 
+	### E.g.,
+	###   branch = Treequel::Branch.new( directory, 'ou=people,dc=acme,dc=com' )
+	###   branch.uid( :chester ).dn
+	###   # => 'uid=chester,ou=people,dc=acme,dc=com'
+	###   branch.uid( :chester, :employeeType => 'admin' ).dn
+	###   # => 'uid=chester+employeeType=admin,ou=people,dc=acme,dc=com'
+	def method_missing( attribute, value=nil, additional_attributes={} )
+		return super( attribute ) if value.nil?
+		valid_types = self.directory.schema.attribute_types
+
+		return super(attribute) unless
+			valid_types.key?( attribute ) &&
+			additional_attributes.keys.all? {|ex_attr| valid_types.key?(ex_attr) }
+
+		rdn = rdn_from_pair_and_hash( attribute, value, additional_attributes )
+
+		return self.get_child( rdn )
+	end
+
+
+	### Clear any cached values when the structural state of the object changes.
+	def clear_caches
+		@entry = nil
+		@values.clear
+	end
+
+
+	#######
+	private
+	#######
+
+	### Make an RDN string (RFC 4514) from the primary +attribute+ and +value+ pair plus any 
+	### +additional_attributes+ (for multivalue RDNs).
+	def rdn_from_pair_and_hash( attribute, value, additional_attributes={} )
+		additional_attributes.merge!( attribute => value )
+		return additional_attributes.sort_by {|k,v| k.to_s }.
+			collect {|pair| pair.join('=') }.
+			join('+')
+	end
+
+
+	### Split the given +rdn+ into an Array of the iniital RDN attribute and value, and a
+	### Hash containing any additional pairs.
+	def pair_and_hash_from_rdn( rdn )
+		initial, *trailing = rdn.split( '+' )
+		initial_pair = initial.split( /\s*=\s*/ )
+		trailing_pairs = trailing.inject({}) do |hash,pair|
+			k,v = pair.split( /\s*=\s*/ )
+			hash[ k ] = v
+			hash
+		end
+
+		return initial_pair + [ trailing_pairs ]
+	end
+
+
+	### Given an +RDN+, return a Hash of the key/value pairs which make it up.
+	def make_rdn_hash( rdn )
+		return rdn.split( /\s*\+\s*/ ).inject({}) do |attributes, pair|
+			attrname, value = pair.split(/\s*=\s*/)
+			attributes[ attrname ] = [ value ]
+			attributes
+		end
+	end
+
+end # class Treequel::Branch
+
+