You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
323 lines
9.5 KiB
323 lines
9.5 KiB
/*
|
|
* Copyright (c) 2004 Szombathelyi György <gyurco@freemail.hu>
|
|
*
|
|
* This program is free software; you can redistribute it and/or
|
|
* modify it under the terms of the GNU General Public
|
|
* License version 2 as published by the Free Software Foundation.
|
|
*
|
|
* This library is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|
* Library General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Library General Public License
|
|
* along with this library; see the file COPYING.LIB. If not, write to
|
|
* the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor,
|
|
* Boston, MA 02110-1301, USA.
|
|
**/
|
|
|
|
#include <tqstring.h>
|
|
#include <tqdir.h>
|
|
|
|
#include <kdebug.h>
|
|
#include <tdemessagebox.h>
|
|
|
|
#include "kglobal_.h"
|
|
#include "kgroupldap.h"
|
|
#include "misc.h"
|
|
#include "editDefaults.h"
|
|
|
|
#include "kgroupldap.moc"
|
|
|
|
KGroupLDAP::KGroupLDAP( KUserPrefsBase *cfg ) : KU::KGroups( cfg )
|
|
{
|
|
mGroups.setAutoDelete(TRUE);
|
|
|
|
if ( mCfg->ldapssl() )
|
|
mUrl.setProtocol("ldaps");
|
|
else
|
|
mUrl.setProtocol("ldap");
|
|
|
|
mUrl.setHost( mCfg->ldaphost() );
|
|
mUrl.setPort( mCfg->ldapport() );
|
|
mUrl.setDn( mCfg->ldapgroupbase() + "," + mCfg->ldapdn() );
|
|
if ( !mCfg->ldapanon() ) {
|
|
mUrl.setUser( mCfg->ldapuser() );
|
|
mUrl.setPass( mCfg->ldappassword() );
|
|
}
|
|
mUrl.setFilter( mCfg->ldapgroupfilter() );
|
|
|
|
if ( mCfg->ldaptls() ) mUrl.setExtension("x-tls","");
|
|
if ( mCfg->ldapsasl() ) {
|
|
mUrl.setExtension( "x-sasl", "" );
|
|
mUrl.setExtension( "x-mech", mCfg->ldapsaslmech() );
|
|
}
|
|
|
|
mUrl.setScope(TDEABC::LDAPUrl::One);
|
|
mUrl.setExtension("x-dir","base");
|
|
|
|
caps = Cap_Passwd;
|
|
if ( mCfg->ldapsam() ) {
|
|
caps |= Cap_Samba;
|
|
domsid = mCfg->samdomsid();
|
|
}
|
|
|
|
reload();
|
|
}
|
|
|
|
KGroupLDAP::~KGroupLDAP()
|
|
{
|
|
mGroups.clear();
|
|
}
|
|
|
|
TQString KGroupLDAP::getRDN( KU::KGroup *group )
|
|
{
|
|
switch ( mCfg->ldapgrouprdn() ) {
|
|
case KUserPrefsBase::EnumLdapgrouprdn::cn:
|
|
return "cn=" + group->getName();
|
|
case KUserPrefsBase::EnumLdapgrouprdn::gidNumber:
|
|
return "gidNumber=" + TQString::number( group->getGID() );
|
|
default:
|
|
return "";
|
|
}
|
|
}
|
|
|
|
void KGroupLDAP::result( TDEIO::Job *job )
|
|
{
|
|
delete mProg;
|
|
mCancel = false;
|
|
if ( job->error() ) {
|
|
TQString errstr = job->errorString();
|
|
if ( !errstr.isEmpty() ) {
|
|
if ( ldif.isEmpty() )
|
|
KMessageBox::error( 0, errstr );
|
|
else
|
|
KMessageBox::detailedError( 0, errstr, TQString::fromUtf8( ldif, ldif.size()-1 ) );
|
|
}
|
|
mOk = false;
|
|
} else {
|
|
mOk = true;
|
|
}
|
|
}
|
|
|
|
void KGroupLDAP::data( TDEIO::Job*, const TQByteArray& data )
|
|
{
|
|
if ( data.size() ) {
|
|
mParser.setLDIF( data );
|
|
} else {
|
|
mParser.endLDIF();
|
|
}
|
|
|
|
TDEABC::LDIF::ParseVal ret;
|
|
TQString name, val;
|
|
TQByteArray value;
|
|
do {
|
|
ret = mParser.nextItem();
|
|
switch ( ret ) {
|
|
case TDEABC::LDIF::Item:
|
|
name = mParser.attr().lower();
|
|
value = mParser.val();
|
|
val = TQString::fromUtf8( value, value.size() );
|
|
if ( name == "objectclass" ) {
|
|
if ( val.lower() == "sambagroupmapping" )
|
|
mGroup->setCaps( KU::KGroup::Cap_Samba );
|
|
} else if ( name == "gidnumber" )
|
|
mGroup->setGID( val.toLong() );
|
|
else if ( name == "cn" )
|
|
mGroup->setName( val );
|
|
else if ( name == "userpassword" )
|
|
mGroup->setPwd( val );
|
|
else if ( name == "memberuid" )
|
|
mGroup->addUser( val );
|
|
else if ( name == "sambasid" )
|
|
mGroup->setSID( val );
|
|
else if ( name == "sambagrouptype" )
|
|
mGroup->setType( val.toInt() );
|
|
else if ( name == "displayname" )
|
|
mGroup->setDisplayName( val );
|
|
else if ( name == "description" )
|
|
mGroup->setDesc( val );
|
|
break;
|
|
case TDEABC::LDIF::EndEntry: {
|
|
KU::KGroup newGroup;
|
|
mGroups.append( new KU::KGroup( mGroup ) );
|
|
mGroup->copy( &newGroup );
|
|
if ( ( mGroups.count() & 7 ) == 7 ) {
|
|
mProg->progressBar()->advance( mAdv );
|
|
if ( mProg->progressBar()->progress() == 0 ) mAdv = 1;
|
|
if ( mProg->progressBar()->progress() == mProg->progressBar()->totalSteps()-1 ) mAdv = -1;
|
|
}
|
|
break;
|
|
}
|
|
default:
|
|
break;
|
|
}
|
|
} while ( ret != TDEABC::LDIF::MoreData );
|
|
}
|
|
|
|
bool KGroupLDAP::reload()
|
|
{
|
|
kdDebug() << "KGroupLDAP::reload()" << endl;
|
|
mGroup = new KU::KGroup();
|
|
mParser.startParsing();
|
|
|
|
mProg = new KProgressDialog( 0, "", "", i18n("Loading Groups From LDAP"), true );
|
|
mProg->setAutoClose( false );
|
|
mProg->progressBar()->setFormat( "" );
|
|
mProg->progressBar()->setTotalSteps( 100 );
|
|
mAdv = 1;
|
|
mCancel = true;
|
|
ldif = "";
|
|
|
|
TDEIO::Job *job = TDEIO::get( mUrl, true, false );
|
|
connect( job, TQT_SIGNAL( data( TDEIO::Job*, const TQByteArray& ) ),
|
|
this, TQT_SLOT( data( TDEIO::Job*, const TQByteArray& ) ) );
|
|
connect( job, TQT_SIGNAL( result( TDEIO::Job* ) ),
|
|
this, TQT_SLOT( result( TDEIO::Job* ) ) );
|
|
mProg->exec();
|
|
if ( mCancel ) job->kill();
|
|
|
|
delete mGroup;
|
|
return( mOk );
|
|
}
|
|
|
|
bool KGroupLDAP::dbcommit()
|
|
{
|
|
mAddSucc.clear();
|
|
mDelSucc.clear();
|
|
mModSucc.clear();
|
|
mAdd.first();
|
|
mDel.first();
|
|
mAddGroup = 0; mDelGroup = 0; mGroup = 0;
|
|
ldif = "";
|
|
|
|
mProg = new KProgressDialog( 0, "", i18n("LDAP Operation"), "", true );
|
|
TDEIO::Job *job = TDEIO::put( mUrl, -1, false, false, false );
|
|
connect( job, TQT_SIGNAL( dataReq( TDEIO::Job*, TQByteArray& ) ),
|
|
this, TQT_SLOT( putData( TDEIO::Job*, TQByteArray& ) ) );
|
|
connect( job, TQT_SIGNAL( result( TDEIO::Job* ) ),
|
|
this, TQT_SLOT( result( TDEIO::Job* ) ) );
|
|
mProg->exec();
|
|
return( mOk );
|
|
}
|
|
|
|
void KGroupLDAP::putData( TDEIO::Job*, TQByteArray& data )
|
|
{
|
|
ModIt mit = mMod.begin();
|
|
|
|
if ( mAddGroup ) {
|
|
mAddSucc.append( mAddGroup );
|
|
mAdd.remove();
|
|
mAddGroup = 0;
|
|
}
|
|
if ( mDelGroup ) {
|
|
mDelSucc.append( mDelGroup );
|
|
mDel.remove();
|
|
mDelGroup = 0;
|
|
}
|
|
if ( mGroup ) {
|
|
mModSucc.insert( mGroup, mit.data() );
|
|
mMod.remove( mit );
|
|
mit = mMod.begin();
|
|
mGroup = 0;
|
|
}
|
|
|
|
if ( (mAddGroup = mAdd.current()) ) {
|
|
addData( mAddGroup );
|
|
data = ldif;
|
|
} else if ( mit != mMod.end() ) {
|
|
mGroup = mit.key();
|
|
modData( &(mit.data()) );
|
|
data = ldif;
|
|
} else if ( (mDelGroup = mDel.current()) ) {
|
|
delData( mDelGroup );
|
|
data = ldif;
|
|
} else
|
|
data.resize(0);
|
|
}
|
|
|
|
void KGroupLDAP::addData( KU::KGroup *group )
|
|
{
|
|
ldif = "dn: " + getRDN( group ).utf8() + "," +
|
|
mUrl.dn().utf8() + "\n" + "objectclass: posixGroup\n";
|
|
|
|
ldif +=
|
|
TDEABC::LDIF::assembleLine( "cn", group->getName() ) + "\n" +
|
|
TDEABC::LDIF::assembleLine( "gidnumber", TQString::number(group->getGID()) ) + "\n" +
|
|
TDEABC::LDIF::assembleLine( "userpassword", group->getPwd() ) + "\n";
|
|
for ( uint i=0; i < group->count(); i++ ) {
|
|
ldif += TDEABC::LDIF::assembleLine( "memberuid", group->user(i) ) + "\n";
|
|
}
|
|
if ( ( getCaps() & Cap_Samba ) && ( group->getCaps() & KU::KGroup::Cap_Samba ) ) {
|
|
ldif += "objectclass: sambagroupmapping\n" +
|
|
TDEABC::LDIF::assembleLine( "sambasid", group->getSID().getSID() ) + "\n" +
|
|
TDEABC::LDIF::assembleLine( "displayname", group->getDisplayName() ) + "\n" +
|
|
TDEABC::LDIF::assembleLine( "description", group->getDesc() ) + "\n" +
|
|
TDEABC::LDIF::assembleLine( "sambagrouptype", TQString::number( group->getType() ) ) + "\n";
|
|
}
|
|
ldif += "\n\n";
|
|
kdDebug() << "ldif: " << ldif << endl;
|
|
}
|
|
|
|
void KGroupLDAP::delData( KU::KGroup *group )
|
|
{
|
|
ldif = "dn: " + getRDN( group ).utf8() + "," +
|
|
mUrl.dn().utf8() + "\n" + "changetype: delete\n\n";
|
|
kdDebug() << "ldif: " << ldif << endl;
|
|
}
|
|
|
|
void KGroupLDAP::modData( KU::KGroup *group )
|
|
{
|
|
TQString oldrdn = getRDN( mGroup );
|
|
TQString newrdn = getRDN( group );
|
|
|
|
ldif = "";
|
|
if ( oldrdn != newrdn ) {
|
|
ldif = "dn: " + oldrdn.utf8() + "," + mUrl.dn().utf8() + "\n" +
|
|
"changetype: modrdn\n" +
|
|
"newrdn: " + newrdn.utf8() + "\n" +
|
|
"deleteoldrdn: 1\n\n";
|
|
}
|
|
|
|
ldif += "dn: " + newrdn.utf8() + "," + mUrl.dn().utf8() + "\n" +
|
|
"changetype: modify\n" +
|
|
"replace: objectclass\n" +
|
|
"objectclass: posixgroup\n";
|
|
if ( ( getCaps() & Cap_Samba ) && ( group->getCaps() & KU::KGroup::Cap_Samba ) ) {
|
|
ldif += "objectclass: sambagroupmapping\n";
|
|
}
|
|
ldif +=
|
|
"-\nreplace: cn\n" +
|
|
TDEABC::LDIF::assembleLine( "cn", group->getName() ) +
|
|
"\n-\nreplace: gidnumber\n" +
|
|
TDEABC::LDIF::assembleLine( "gidnumber", TQString::number(group->getGID()) ) +
|
|
"\n-\nreplace: userpassword\n" +
|
|
TDEABC::LDIF::assembleLine( "userpassword", group->getPwd() ) +
|
|
"\n-\nreplace: memberuid\n";
|
|
for ( uint i=0; i < group->count(); i++ ) {
|
|
ldif += TDEABC::LDIF::assembleLine( "memberuid", group->user(i)) + "\n";
|
|
}
|
|
if ( getCaps() & Cap_Samba ) {
|
|
if ( group->getCaps() & KU::KGroup::Cap_Samba ) {
|
|
ldif +=
|
|
"-\nreplace: sambasid\n" +
|
|
TDEABC::LDIF::assembleLine( "sambasid", group->getSID().getSID() ) +
|
|
"\n-\nreplace: displayname\n" +
|
|
TDEABC::LDIF::assembleLine( "displayname", group->getDisplayName() ) +
|
|
"\n-\nreplace: description\n" +
|
|
TDEABC::LDIF::assembleLine( "description", group->getDesc() ) +
|
|
"\n-\nreplace: sambagrouptype\n" +
|
|
TDEABC::LDIF::assembleLine( "sambagrouptype", TQString::number( group->getType() ) ) + "\n";
|
|
} else {
|
|
ldif += "-\nreplace: sambasid\n";
|
|
ldif += "-\nreplace: displayname\n";
|
|
ldif += "-\nreplace: description\n";
|
|
ldif += "-\nreplace: sambagrouptype\n";
|
|
ldif += "-\nreplace: sambasidlist\n";
|
|
}
|
|
}
|
|
|
|
ldif += "-\n\n";
|
|
kdDebug() << "ldif: " << ldif << endl;
|
|
}
|