2007-05-09 21:06:15 +02:00
|
|
|
/* LDAPSource.m - this file is part of SOGo
|
|
|
|
|
*
|
2009-03-16 22:13:01 +01:00
|
|
|
* Copyright (C) 2007-2009 Inverse inc.
|
2007-05-09 21:06:15 +02:00
|
|
|
*
|
|
|
|
|
* Author: Wolfgang Sourdeau <wsourdeau@inverse.ca>
|
|
|
|
|
*
|
|
|
|
|
* This file is free software; you can redistribute it and/or modify
|
|
|
|
|
* it under the terms of the GNU General Public License as published by
|
|
|
|
|
* the Free Software Foundation; either version 2, or (at your option)
|
|
|
|
|
* any later version.
|
|
|
|
|
*
|
|
|
|
|
* This file is distributed in the hope that it will be useful,
|
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
* GNU General Public License for more details.
|
|
|
|
|
*
|
|
|
|
|
* You should have received a copy of the GNU General Public License
|
|
|
|
|
* along with this program; see the file COPYING. If not, write to
|
|
|
|
|
* the Free Software Foundation, Inc., 59 Temple Place - Suite 330,
|
|
|
|
|
* Boston, MA 02111-1307, USA.
|
|
|
|
|
*/
|
|
|
|
|
|
2010-04-20 23:30:17 +02:00
|
|
|
#include <ldap.h>
|
|
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
#import <Foundation/NSArray.h>
|
|
|
|
|
#import <Foundation/NSDictionary.h>
|
|
|
|
|
#import <Foundation/NSString.h>
|
|
|
|
|
|
2009-04-02 22:51:46 +02:00
|
|
|
#import <NGExtensions/NSObject+Logs.h>
|
2007-05-09 21:06:15 +02:00
|
|
|
#import <EOControl/EOControl.h>
|
|
|
|
|
#import <NGLdap/NGLdapConnection.h>
|
|
|
|
|
#import <NGLdap/NGLdapAttribute.h>
|
|
|
|
|
#import <NGLdap/NGLdapEntry.h>
|
2010-03-08 16:18:05 +01:00
|
|
|
#import <NGLdap/NGLdapModification.h>
|
2007-05-09 21:06:15 +02:00
|
|
|
|
2008-04-25 17:16:58 +02:00
|
|
|
#import "NSArray+Utilities.h"
|
2008-08-21 21:19:11 +02:00
|
|
|
#import "NSString+Utilities.h"
|
2009-11-29 05:19:32 +01:00
|
|
|
#import "SOGoDomainDefaults.h"
|
|
|
|
|
#import "SOGoSystemDefaults.h"
|
2008-08-21 21:19:11 +02:00
|
|
|
|
|
|
|
|
#import "LDAPSource.h"
|
2007-05-09 21:06:15 +02:00
|
|
|
|
2010-09-24 19:50:40 +02:00
|
|
|
#define SafeLDAPCriteria(x) [[[x stringByReplacingString: @"\\" withString: @"\\\\"] \
|
|
|
|
|
stringByReplacingString: @"'" withString: @"\\'"] \
|
|
|
|
|
stringByReplacingString: @"%" withString: @"%%"]
|
2007-05-09 21:06:15 +02:00
|
|
|
static NSArray *commonSearchFields;
|
2008-12-19 17:18:03 +01:00
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
@implementation LDAPSource
|
|
|
|
|
|
|
|
|
|
+ (void) initialize
|
|
|
|
|
{
|
|
|
|
|
if (!commonSearchFields)
|
|
|
|
|
{
|
|
|
|
|
commonSearchFields = [NSArray arrayWithObjects:
|
|
|
|
|
@"title",
|
|
|
|
|
@"company",
|
|
|
|
|
@"o",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"displayname",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"modifytimestamp",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillahomestate",
|
|
|
|
|
@"mozillahomeurl",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"homeurl",
|
|
|
|
|
@"st",
|
|
|
|
|
@"region",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillacustom2",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"custom2",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillahomecountryname",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"description",
|
|
|
|
|
@"notes",
|
|
|
|
|
@"department",
|
|
|
|
|
@"departmentnumber",
|
|
|
|
|
@"ou",
|
|
|
|
|
@"orgunit",
|
|
|
|
|
@"mobile",
|
|
|
|
|
@"cellphone",
|
|
|
|
|
@"carphone",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillacustom1",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"custom1",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillanickname",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"xmozillanickname",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillaworkurl",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"workurl",
|
|
|
|
|
@"fax",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"facsimiletelephonenumber",
|
|
|
|
|
@"telephonenumber",
|
|
|
|
|
@"mozillahomestreet",
|
|
|
|
|
@"mozillasecondemail",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"xmozillasecondemail",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillacustom4",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"custom4",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"nsaimid",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"nscpaimscreenname",
|
|
|
|
|
@"street",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"streetaddress",
|
|
|
|
|
@"postofficebox",
|
|
|
|
|
@"homephone",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"cn",
|
|
|
|
|
@"commonname",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"givenname",
|
|
|
|
|
@"mozillahomepostalcode",
|
|
|
|
|
@"mozillahomelocalityname",
|
|
|
|
|
@"mozillaworkstreet2",
|
|
|
|
|
@"mozillausehtmlmail",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"xmozillausehtmlmail",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillahomestreet2",
|
|
|
|
|
@"postalcode",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"zip",
|
|
|
|
|
@"c",
|
|
|
|
|
@"countryname",
|
|
|
|
|
@"pager",
|
|
|
|
|
@"pagerphone",
|
|
|
|
|
@"mail",
|
|
|
|
|
@"sn",
|
|
|
|
|
@"surname",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"mozillacustom3",
|
2007-05-09 21:06:15 +02:00
|
|
|
@"custom3",
|
|
|
|
|
@"l",
|
|
|
|
|
@"locality",
|
|
|
|
|
@"birthyear",
|
2009-09-25 16:42:33 +02:00
|
|
|
@"serialnumber",
|
2009-10-09 00:34:52 +02:00
|
|
|
@"calfburl",
|
|
|
|
|
@"proxyaddresses",
|
2008-11-23 09:31:05 +01:00
|
|
|
nil];
|
2007-05-09 21:06:15 +02:00
|
|
|
[commonSearchFields retain];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
+ (id) sourceFromUDSource: (NSDictionary *) udSource
|
2010-04-20 23:30:17 +02:00
|
|
|
inDomain: (NSString *) sourceDomain
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
|
|
|
|
id newSource;
|
|
|
|
|
|
2009-11-29 05:19:32 +01:00
|
|
|
newSource = [[self alloc] initFromUDSource: udSource
|
2010-04-20 23:30:17 +02:00
|
|
|
inDomain: sourceDomain];
|
2007-05-09 21:06:15 +02:00
|
|
|
[newSource autorelease];
|
|
|
|
|
|
|
|
|
|
return newSource;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (id) init
|
|
|
|
|
{
|
|
|
|
|
if ((self = [super init]))
|
|
|
|
|
{
|
|
|
|
|
bindDN = nil;
|
|
|
|
|
hostname = nil;
|
|
|
|
|
port = 389;
|
2009-04-02 22:51:46 +02:00
|
|
|
encryption = nil;
|
2007-05-09 21:06:15 +02:00
|
|
|
password = nil;
|
2007-10-10 20:44:26 +02:00
|
|
|
sourceID = nil;
|
2009-11-29 05:19:32 +01:00
|
|
|
domain = nil;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
baseDN = nil;
|
|
|
|
|
IDField = @"cn"; /* the first part of a user DN */
|
|
|
|
|
CNField = @"cn";
|
|
|
|
|
UIDField = @"uid";
|
2007-11-18 11:16:25 +01:00
|
|
|
mailFields = [NSArray arrayWithObject: @"mail"];
|
|
|
|
|
[mailFields retain];
|
2009-05-12 21:56:39 +02:00
|
|
|
IMAPHostField = nil;
|
2007-05-10 23:18:06 +02:00
|
|
|
bindFields = nil;
|
2009-04-06 14:54:03 +02:00
|
|
|
_scope = @"sub";
|
2009-03-16 22:13:01 +01:00
|
|
|
_filter = nil;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
searchAttributes = nil;
|
2010-03-08 16:18:05 +01:00
|
|
|
passwordPolicy = NO;
|
2007-05-09 21:06:15 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return self;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (void) dealloc
|
|
|
|
|
{
|
|
|
|
|
[bindDN release];
|
|
|
|
|
[hostname release];
|
2009-04-02 22:51:46 +02:00
|
|
|
[encryption release];
|
2007-05-09 21:06:15 +02:00
|
|
|
[password release];
|
|
|
|
|
[baseDN release];
|
|
|
|
|
[IDField release];
|
|
|
|
|
[CNField release];
|
|
|
|
|
[UIDField release];
|
2007-11-18 11:16:25 +01:00
|
|
|
[mailFields release];
|
2009-05-12 21:56:39 +02:00
|
|
|
[IMAPHostField release];
|
2007-05-10 23:18:06 +02:00
|
|
|
[bindFields release];
|
2009-03-16 22:13:01 +01:00
|
|
|
[_filter release];
|
2007-10-10 20:44:26 +02:00
|
|
|
[sourceID release];
|
2007-11-26 21:41:59 +01:00
|
|
|
[modulesConstraints release];
|
2009-04-06 14:54:03 +02:00
|
|
|
[_scope release];
|
2009-10-13 16:09:04 +02:00
|
|
|
[searchAttributes release];
|
2009-11-29 22:44:04 +01:00
|
|
|
[domain release];
|
2007-05-09 21:06:15 +02:00
|
|
|
[super dealloc];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (id) initFromUDSource: (NSDictionary *) udSource
|
2009-11-29 05:19:32 +01:00
|
|
|
inDomain: (NSString *) sourceDomain
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
2009-11-29 05:19:32 +01:00
|
|
|
SOGoDomainDefaults *dd;
|
|
|
|
|
NSNumber *udQueryLimit, *udQueryTimeout;
|
|
|
|
|
|
|
|
|
|
if ((self = [self init]))
|
|
|
|
|
{
|
|
|
|
|
ASSIGN (sourceID, [udSource objectForKey: @"id"]);
|
|
|
|
|
|
|
|
|
|
[self setBindDN: [udSource objectForKey: @"bindDN"]
|
|
|
|
|
password: [udSource objectForKey: @"bindPassword"]
|
|
|
|
|
hostname: [udSource objectForKey: @"hostname"]
|
|
|
|
|
port: [udSource objectForKey: @"port"]
|
|
|
|
|
encryption: [udSource objectForKey: @"encryption"]];
|
|
|
|
|
[self setBaseDN: [udSource objectForKey: @"baseDN"]
|
|
|
|
|
IDField: [udSource objectForKey: @"IDFieldName"]
|
|
|
|
|
CNField: [udSource objectForKey: @"CNFieldName"]
|
|
|
|
|
UIDField: [udSource objectForKey: @"UIDFieldName"]
|
|
|
|
|
mailFields: [udSource objectForKey: @"MailFieldNames"]
|
2009-05-12 21:56:39 +02:00
|
|
|
IMAPHostField: [udSource objectForKey: @"IMAPHostFieldName"]
|
2007-05-10 23:18:06 +02:00
|
|
|
andBindFields: [udSource objectForKey: @"bindFields"]];
|
2009-11-29 05:19:32 +01:00
|
|
|
|
|
|
|
|
if ([sourceDomain length])
|
|
|
|
|
{
|
2009-11-29 22:44:04 +01:00
|
|
|
dd = [SOGoDomainDefaults defaultsForDomain: sourceDomain];
|
|
|
|
|
ASSIGN (domain, sourceDomain);
|
2009-11-29 05:19:32 +01:00
|
|
|
}
|
|
|
|
|
else
|
2009-11-29 22:44:04 +01:00
|
|
|
dd = [SOGoSystemDefaults sharedSystemDefaults];
|
2009-11-29 05:19:32 +01:00
|
|
|
|
|
|
|
|
contactInfoAttribute
|
|
|
|
|
= [udSource objectForKey: @"SOGoLDAPContactInfoAttribute"];
|
|
|
|
|
if (!contactInfoAttribute)
|
|
|
|
|
contactInfoAttribute = [dd ldapContactInfoAttribute];
|
|
|
|
|
[contactInfoAttribute retain];
|
|
|
|
|
|
|
|
|
|
udQueryLimit = [udSource objectForKey: @"SOGoLDAPQueryLimit"];
|
|
|
|
|
if (udQueryLimit)
|
|
|
|
|
queryLimit = [udQueryLimit intValue];
|
|
|
|
|
else
|
|
|
|
|
queryLimit = [dd ldapQueryLimit];
|
|
|
|
|
|
|
|
|
|
udQueryTimeout = [udSource objectForKey: @"SOGoLDAPQueryTimeout"];
|
|
|
|
|
if (udQueryTimeout)
|
|
|
|
|
queryTimeout = [udQueryTimeout intValue];
|
|
|
|
|
else
|
|
|
|
|
queryTimeout = [dd ldapQueryTimeout];
|
|
|
|
|
|
|
|
|
|
ASSIGN (modulesConstraints,
|
|
|
|
|
[udSource objectForKey: @"ModulesConstraints"]);
|
|
|
|
|
ASSIGN (_filter, [udSource objectForKey: @"filter"]);
|
|
|
|
|
ASSIGN (_scope, ([udSource objectForKey: @"scope"]
|
|
|
|
|
? [udSource objectForKey: @"scope"]
|
|
|
|
|
: (id)@"sub"));
|
2010-03-08 16:18:05 +01:00
|
|
|
|
|
|
|
|
if ([udSource objectForKey: @"passwordPolicy"])
|
|
|
|
|
passwordPolicy = [[udSource objectForKey: @"passwordPolicy"] boolValue];
|
2009-11-29 05:19:32 +01:00
|
|
|
}
|
2009-04-06 14:54:03 +02:00
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
return self;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (void) setBindDN: (NSString *) newBindDN
|
2009-04-02 22:51:46 +02:00
|
|
|
password: (NSString *) newBindPassword
|
2007-05-09 21:06:15 +02:00
|
|
|
hostname: (NSString *) newBindHostname
|
|
|
|
|
port: (NSString *) newBindPort
|
2009-04-02 22:51:46 +02:00
|
|
|
encryption: (NSString *) newEncryption
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
|
|
|
|
ASSIGN (bindDN, newBindDN);
|
2009-04-02 22:51:46 +02:00
|
|
|
ASSIGN (encryption, [newEncryption uppercaseString]);
|
|
|
|
|
if ([encryption isEqualToString: @"SSL"])
|
|
|
|
|
port = 636;
|
2007-05-09 21:06:15 +02:00
|
|
|
ASSIGN (hostname, newBindHostname);
|
|
|
|
|
if (newBindPort)
|
|
|
|
|
port = [newBindPort intValue];
|
|
|
|
|
ASSIGN (password, newBindPassword);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (void) setBaseDN: (NSString *) newBaseDN
|
|
|
|
|
IDField: (NSString *) newIDField
|
|
|
|
|
CNField: (NSString *) newCNField
|
2007-05-10 23:18:06 +02:00
|
|
|
UIDField: (NSString *) newUIDField
|
2007-11-18 11:16:25 +01:00
|
|
|
mailFields: (NSArray *) newMailFields
|
2009-05-12 21:56:39 +02:00
|
|
|
IMAPHostField: (NSString *) newIMAPHostField
|
2010-01-08 18:48:45 +01:00
|
|
|
andBindFields: (id) newBindFields
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
2009-07-06 23:25:38 +02:00
|
|
|
ASSIGN (baseDN, [newBaseDN lowercaseString]);
|
2007-05-09 21:06:15 +02:00
|
|
|
if (newIDField)
|
|
|
|
|
ASSIGN (IDField, newIDField);
|
2009-03-16 19:26:08 +01:00
|
|
|
if (newCNField)
|
2007-05-09 21:06:15 +02:00
|
|
|
ASSIGN (CNField, newCNField);
|
2009-03-16 19:26:08 +01:00
|
|
|
if (newUIDField)
|
2007-05-09 21:06:15 +02:00
|
|
|
ASSIGN (UIDField, newUIDField);
|
2009-05-12 21:56:39 +02:00
|
|
|
if (newIMAPHostField)
|
|
|
|
|
ASSIGN (IMAPHostField, newIMAPHostField);
|
2007-11-18 11:16:25 +01:00
|
|
|
if (newMailFields)
|
|
|
|
|
ASSIGN (mailFields, newMailFields);
|
2007-05-10 23:18:06 +02:00
|
|
|
if (newBindFields)
|
2010-01-08 18:48:45 +01:00
|
|
|
{
|
|
|
|
|
// Before SOGo v1.2.0, bindFields was a comma-separated list
|
|
|
|
|
// of values. So it could be configured as:
|
|
|
|
|
//
|
|
|
|
|
// bindFields = foo;
|
|
|
|
|
// bindFields = "foo, bar, baz";
|
|
|
|
|
//
|
|
|
|
|
// SOGo v1.2.0 and upwards redefined that parameter as an array
|
|
|
|
|
// so we would have instead:
|
|
|
|
|
//
|
|
|
|
|
// bindFields = (foo);
|
|
|
|
|
// bindFields = (foo, bar, baz);
|
|
|
|
|
//
|
|
|
|
|
// We check for the old format and we support it.
|
|
|
|
|
if ([newBindFields isKindOfClass: [NSArray class]])
|
|
|
|
|
ASSIGN(bindFields, newBindFields);
|
|
|
|
|
else
|
|
|
|
|
{
|
|
|
|
|
[self logWithFormat: @"WARNING: using old bindFields format - please update it"];
|
|
|
|
|
ASSIGN(bindFields, [newBindFields componentsSeparatedByString: @","]);
|
|
|
|
|
}
|
|
|
|
|
}
|
2007-05-09 21:06:15 +02:00
|
|
|
}
|
|
|
|
|
|
2009-04-02 22:51:46 +02:00
|
|
|
- (BOOL) _setupEncryption: (NGLdapConnection *) encryptedConn
|
|
|
|
|
{
|
|
|
|
|
BOOL rc;
|
|
|
|
|
|
|
|
|
|
if ([encryption isEqualToString: @"SSL"])
|
|
|
|
|
rc = [encryptedConn useSSL];
|
2009-04-03 02:35:21 +02:00
|
|
|
else if ([encryption isEqualToString: @"STARTTLS"])
|
2009-04-02 22:51:46 +02:00
|
|
|
rc = [encryptedConn startTLS];
|
|
|
|
|
else
|
|
|
|
|
{
|
2009-04-03 02:35:21 +02:00
|
|
|
[self errorWithFormat:
|
|
|
|
|
@"encryption scheme '%@' not supported:"
|
|
|
|
|
@" use 'SSL' or 'STARTTLS'", encryption];
|
2009-04-02 22:51:46 +02:00
|
|
|
rc = NO;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return rc;
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
- (NGLdapConnection *) _ldapConnection
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
NGLdapConnection *ldapConnection;
|
2008-09-08 16:54:33 +02:00
|
|
|
|
|
|
|
|
NS_DURING
|
|
|
|
|
{
|
|
|
|
|
ldapConnection = [[NGLdapConnection alloc] initWithHostName: hostname
|
|
|
|
|
port: port];
|
2009-09-30 17:11:47 +02:00
|
|
|
[ldapConnection autorelease];
|
2009-04-02 22:51:46 +02:00
|
|
|
if (![encryption length] || [self _setupEncryption: ldapConnection])
|
|
|
|
|
{
|
|
|
|
|
[ldapConnection bindWithMethod: @"simple"
|
|
|
|
|
binddn: bindDN
|
|
|
|
|
credentials: password];
|
2009-11-29 05:19:32 +01:00
|
|
|
if (queryLimit > 0)
|
|
|
|
|
[ldapConnection setQuerySizeLimit: queryLimit];
|
|
|
|
|
if (queryTimeout > 0)
|
|
|
|
|
[ldapConnection setQueryTimeLimit: queryTimeout];
|
2009-04-02 22:51:46 +02:00
|
|
|
}
|
|
|
|
|
else
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapConnection = nil;
|
2008-09-08 16:54:33 +02:00
|
|
|
}
|
|
|
|
|
NS_HANDLER
|
|
|
|
|
{
|
2008-10-20 16:04:09 +02:00
|
|
|
NSLog(@"Could not bind to the LDAP server %@ (%d) using the bind DN: %@", hostname, port, bindDN);
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapConnection = nil;
|
2008-09-08 16:54:33 +02:00
|
|
|
}
|
|
|
|
|
NS_ENDHANDLER;
|
|
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
return ldapConnection;
|
2007-05-09 21:06:15 +02:00
|
|
|
}
|
|
|
|
|
|
2009-11-29 05:19:32 +01:00
|
|
|
- (NSString *) domain
|
|
|
|
|
{
|
|
|
|
|
return domain;
|
|
|
|
|
}
|
|
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
/* user management */
|
2007-05-10 23:18:06 +02:00
|
|
|
- (EOQualifier *) _qualifierForBindFilter: (NSString *) uid
|
|
|
|
|
{
|
|
|
|
|
NSMutableString *qs;
|
2009-06-04 16:02:45 +02:00
|
|
|
NSString *escapedUid;
|
2007-05-10 23:18:06 +02:00
|
|
|
NSEnumerator *fields;
|
|
|
|
|
NSString *currentField;
|
|
|
|
|
|
|
|
|
|
qs = [NSMutableString string];
|
2008-05-15 23:06:37 +02:00
|
|
|
|
2010-09-24 19:50:40 +02:00
|
|
|
escapedUid = SafeLDAPCriteria(uid);
|
2009-06-04 16:02:45 +02:00
|
|
|
|
2010-01-08 18:48:45 +01:00
|
|
|
fields = [bindFields objectEnumerator];
|
2008-05-15 23:06:37 +02:00
|
|
|
while ((currentField = [fields nextObject]))
|
2009-06-04 16:02:45 +02:00
|
|
|
[qs appendFormat: @" OR (%@='%@')", currentField, escapedUid];
|
|
|
|
|
|
2009-03-16 22:13:01 +01:00
|
|
|
if (_filter && [_filter length])
|
|
|
|
|
[qs appendFormat: @" AND %@", _filter];
|
|
|
|
|
|
|
|
|
|
[qs deleteCharactersInRange: NSMakeRange(0, 4)];
|
2007-05-10 23:18:06 +02:00
|
|
|
|
|
|
|
|
return [EOQualifier qualifierWithQualifierFormat: qs];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (NSString *) _fetchUserDNForLogin: (NSString *) loginToCheck
|
|
|
|
|
{
|
|
|
|
|
NSEnumerator *entries;
|
2009-09-30 17:11:47 +02:00
|
|
|
EOQualifier *qualifier;
|
|
|
|
|
NSArray *attributes;
|
|
|
|
|
NGLdapConnection *ldapConnection;
|
|
|
|
|
NSString *userDN;
|
2008-09-08 16:54:33 +02:00
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapConnection = [self _ldapConnection];
|
|
|
|
|
qualifier = [self _qualifierForBindFilter: loginToCheck];
|
|
|
|
|
attributes = [NSArray arrayWithObject: @"dn"];
|
|
|
|
|
|
|
|
|
|
if ([_scope caseInsensitiveCompare: @"BASE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection baseSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
else if ([_scope caseInsensitiveCompare: @"ONE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection flatSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
2007-05-10 23:18:06 +02:00
|
|
|
else
|
2009-09-30 17:11:47 +02:00
|
|
|
entries = [ldapConnection deepSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
2008-09-08 16:54:33 +02:00
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
userDN = [[entries nextObject] dn];
|
2007-05-10 23:18:06 +02:00
|
|
|
|
|
|
|
|
return userDN;
|
|
|
|
|
}
|
|
|
|
|
|
2010-03-08 16:18:05 +01:00
|
|
|
- (BOOL) checkLogin: (NSString *) _login
|
|
|
|
|
password: (NSString *) _pwd
|
|
|
|
|
perr: (SOGoPasswordPolicyError *) _perr
|
|
|
|
|
expire: (int *) _expire
|
|
|
|
|
grace: (int *) _grace
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
|
|
|
|
NGLdapConnection *bindConnection;
|
2010-03-08 16:18:05 +01:00
|
|
|
NSString *userDN;
|
|
|
|
|
BOOL didBind;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
2007-08-29 18:01:11 +02:00
|
|
|
didBind = NO;
|
|
|
|
|
|
2010-03-08 16:18:05 +01:00
|
|
|
if ([_login length] > 0)
|
2007-05-10 16:56:47 +02:00
|
|
|
{
|
|
|
|
|
bindConnection = [[NGLdapConnection alloc] initWithHostName: hostname
|
|
|
|
|
port: port];
|
2009-04-02 22:51:46 +02:00
|
|
|
if (![encryption length] || [self _setupEncryption: bindConnection])
|
2007-05-10 23:18:06 +02:00
|
|
|
{
|
2009-11-29 05:19:32 +01:00
|
|
|
if (queryTimeout > 0)
|
|
|
|
|
[bindConnection setQueryTimeLimit: queryTimeout];
|
2009-04-02 22:51:46 +02:00
|
|
|
if (bindFields)
|
2010-03-08 16:18:05 +01:00
|
|
|
userDN = [self _fetchUserDNForLogin: _login];
|
2009-04-02 22:51:46 +02:00
|
|
|
else
|
|
|
|
|
userDN = [NSString stringWithFormat: @"%@=%@,%@",
|
2010-03-08 16:18:05 +01:00
|
|
|
IDField, _login, baseDN];
|
2009-04-02 22:51:46 +02:00
|
|
|
if (userDN)
|
|
|
|
|
{
|
|
|
|
|
NS_DURING
|
2010-03-08 16:18:05 +01:00
|
|
|
if (!passwordPolicy)
|
|
|
|
|
didBind = [bindConnection bindWithMethod: @"simple"
|
|
|
|
|
binddn: userDN
|
|
|
|
|
credentials: _pwd];
|
|
|
|
|
else
|
|
|
|
|
didBind = [bindConnection bindWithMethod: @"simple"
|
|
|
|
|
binddn: userDN
|
|
|
|
|
credentials: _pwd
|
|
|
|
|
perr: (void *)_perr
|
|
|
|
|
expire: _expire
|
|
|
|
|
grace: _grace];
|
2009-04-02 22:51:46 +02:00
|
|
|
NS_HANDLER
|
2009-09-11 16:31:02 +02:00
|
|
|
;
|
|
|
|
|
NS_ENDHANDLER
|
|
|
|
|
;
|
|
|
|
|
}
|
2007-05-10 23:18:06 +02:00
|
|
|
}
|
2009-09-30 17:11:47 +02:00
|
|
|
[bindConnection release];
|
2007-05-10 16:56:47 +02:00
|
|
|
}
|
2010-03-08 16:18:05 +01:00
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
return didBind;
|
|
|
|
|
}
|
|
|
|
|
|
2010-03-08 16:18:05 +01:00
|
|
|
- (BOOL) changePasswordForLogin: (NSString *) login
|
|
|
|
|
oldPassword: (NSString *) oldPassword
|
|
|
|
|
newPassword: (NSString *) newPassword
|
|
|
|
|
perr: (SOGoPasswordPolicyError *) perr
|
|
|
|
|
|
|
|
|
|
{
|
|
|
|
|
NGLdapConnection *bindConnection;
|
|
|
|
|
NSString *userDN;
|
|
|
|
|
BOOL didChange;
|
|
|
|
|
|
|
|
|
|
didChange = NO;
|
|
|
|
|
|
|
|
|
|
if ([login length] > 0)
|
|
|
|
|
{
|
|
|
|
|
bindConnection = [[NGLdapConnection alloc] initWithHostName: hostname
|
|
|
|
|
port: port];
|
|
|
|
|
if (![encryption length] || [self _setupEncryption: bindConnection])
|
|
|
|
|
{
|
|
|
|
|
if (queryTimeout > 0)
|
|
|
|
|
[bindConnection setQueryTimeLimit: queryTimeout];
|
|
|
|
|
if (bindFields)
|
|
|
|
|
userDN = [self _fetchUserDNForLogin: login];
|
|
|
|
|
else
|
|
|
|
|
userDN = [NSString stringWithFormat: @"%@=%@,%@",
|
|
|
|
|
IDField, login, baseDN];
|
|
|
|
|
if (userDN)
|
|
|
|
|
{
|
|
|
|
|
NS_DURING
|
|
|
|
|
if (!passwordPolicy)
|
|
|
|
|
{
|
|
|
|
|
// We don't use a password policy - we simply use
|
|
|
|
|
// a modify-op to change the password
|
|
|
|
|
NGLdapModification *mod;
|
|
|
|
|
NGLdapAttribute *attr;
|
|
|
|
|
NSArray *changes;
|
|
|
|
|
|
|
|
|
|
attr = [[NGLdapAttribute alloc] initWithAttributeName: @"userPassword"];
|
|
|
|
|
[attr addStringValue: newPassword];
|
|
|
|
|
|
|
|
|
|
mod = [NGLdapModification replaceModification: attr];
|
|
|
|
|
changes = [NSArray arrayWithObject: mod];
|
2010-03-30 16:32:27 +02:00
|
|
|
*perr = PolicyNoError;
|
2010-03-08 16:18:05 +01:00
|
|
|
|
|
|
|
|
if ([bindConnection bindWithMethod: @"simple"
|
|
|
|
|
binddn: userDN
|
|
|
|
|
credentials: oldPassword])
|
|
|
|
|
didChange = [bindConnection modifyEntryWithDN: userDN
|
|
|
|
|
changes: changes];
|
|
|
|
|
else
|
|
|
|
|
didChange = NO;
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
didChange = [bindConnection changePasswordAtDn: userDN
|
|
|
|
|
oldPassword: oldPassword
|
|
|
|
|
newPassword: newPassword
|
|
|
|
|
perr: (void *)perr];
|
|
|
|
|
NS_HANDLER
|
|
|
|
|
;
|
|
|
|
|
NS_ENDHANDLER
|
|
|
|
|
;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
[bindConnection release];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return didChange;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
/* contact management */
|
|
|
|
|
- (EOQualifier *) _qualifierForFilter: (NSString *) filter
|
|
|
|
|
{
|
2009-06-04 16:02:45 +02:00
|
|
|
NSString *mailFormat, *fieldFormat, *escapedFilter;
|
2007-05-09 21:06:15 +02:00
|
|
|
EOQualifier *qualifier;
|
2009-03-16 22:13:01 +01:00
|
|
|
NSMutableString *qs;
|
2008-04-25 17:16:58 +02:00
|
|
|
|
2010-09-24 19:50:40 +02:00
|
|
|
escapedFilter = SafeLDAPCriteria(filter);
|
2009-06-04 16:02:45 +02:00
|
|
|
if ([escapedFilter length] > 0)
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
2009-06-04 16:02:45 +02:00
|
|
|
fieldFormat = [NSString stringWithFormat: @"(%%@='%@*')", escapedFilter];
|
|
|
|
|
mailFormat = [[mailFields stringsWithFormat: fieldFormat]
|
|
|
|
|
componentsJoinedByString: @" OR "];
|
|
|
|
|
|
|
|
|
|
qs = [NSMutableString string];
|
|
|
|
|
if ([escapedFilter isEqualToString: @"."])
|
2009-03-16 22:13:01 +01:00
|
|
|
[qs appendFormat: @"(%@='*')", CNField];
|
2007-05-09 21:06:15 +02:00
|
|
|
else
|
2009-06-04 16:02:45 +02:00
|
|
|
[qs appendFormat: @"(%@='%@*') OR (sn='%@*') OR (displayName='%@*')"
|
|
|
|
|
@"OR %@ OR (telephoneNumber='*%@*')",
|
|
|
|
|
CNField, escapedFilter, escapedFilter, escapedFilter, mailFormat,
|
|
|
|
|
escapedFilter];
|
|
|
|
|
|
2009-03-16 22:13:01 +01:00
|
|
|
if (_filter && [_filter length])
|
|
|
|
|
[qs appendFormat: @" AND %@", _filter];
|
|
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
qualifier = [EOQualifier qualifierWithQualifierFormat: qs];
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
qualifier = nil;
|
|
|
|
|
|
|
|
|
|
return qualifier;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (EOQualifier *) _qualifierForUIDFilter: (NSString *) uid
|
|
|
|
|
{
|
2009-09-11 16:31:02 +02:00
|
|
|
NSString *mailFormat, *fieldFormat, *escapedUid, *currentField;
|
|
|
|
|
NSEnumerator *bindFieldsEnum;
|
2009-03-16 22:13:01 +01:00
|
|
|
NSMutableString *qs;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
2010-09-24 19:50:40 +02:00
|
|
|
escapedUid = SafeLDAPCriteria(uid);
|
2009-06-04 16:02:45 +02:00
|
|
|
|
|
|
|
|
fieldFormat = [NSString stringWithFormat: @"(%%@='%@')", escapedUid];
|
2008-04-25 17:16:58 +02:00
|
|
|
mailFormat = [[mailFields stringsWithFormat: fieldFormat]
|
|
|
|
|
componentsJoinedByString: @" OR "];
|
2009-09-11 16:31:02 +02:00
|
|
|
qs = [NSMutableString stringWithFormat: @"(%@='%@') OR %@",
|
|
|
|
|
UIDField, escapedUid, mailFormat];
|
|
|
|
|
if (bindFields)
|
|
|
|
|
{
|
2010-01-08 18:48:45 +01:00
|
|
|
bindFieldsEnum = [bindFields objectEnumerator];
|
2009-09-11 16:31:02 +02:00
|
|
|
while ((currentField = [bindFieldsEnum nextObject]))
|
2010-10-13 19:49:44 +02:00
|
|
|
{
|
|
|
|
|
if ([currentField caseInsensitiveCompare: UIDField] != NSOrderedSame
|
|
|
|
|
&& ![mailFields containsObject: currentField])
|
|
|
|
|
[qs appendFormat: @" OR (%@='%@')", [currentField stringByTrimmingSpaces], escapedUid];
|
|
|
|
|
}
|
2009-09-11 16:31:02 +02:00
|
|
|
}
|
2009-06-04 16:02:45 +02:00
|
|
|
|
2009-03-16 22:13:01 +01:00
|
|
|
if (_filter && [_filter length])
|
|
|
|
|
[qs appendFormat: @" AND %@", _filter];
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
return [EOQualifier qualifierWithQualifierFormat: qs];
|
|
|
|
|
}
|
|
|
|
|
|
2009-07-06 23:25:38 +02:00
|
|
|
- (NSArray *) _constraintsFields
|
2007-11-26 21:41:59 +01:00
|
|
|
{
|
|
|
|
|
NSMutableArray *fields;
|
|
|
|
|
NSEnumerator *values;
|
|
|
|
|
NSDictionary *currentConstraint;
|
|
|
|
|
|
|
|
|
|
fields = [NSMutableArray array];
|
|
|
|
|
values = [[modulesConstraints allValues] objectEnumerator];
|
|
|
|
|
while ((currentConstraint = [values nextObject]))
|
|
|
|
|
[fields addObjectsFromArray: [currentConstraint allKeys]];
|
|
|
|
|
|
|
|
|
|
return fields;
|
|
|
|
|
}
|
|
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
- (NSArray *) _searchAttributes
|
|
|
|
|
{
|
|
|
|
|
if (!searchAttributes)
|
|
|
|
|
{
|
|
|
|
|
searchAttributes = [NSMutableArray new];
|
2009-07-06 23:25:38 +02:00
|
|
|
[searchAttributes addObject: @"objectClass"];
|
2007-05-09 21:06:15 +02:00
|
|
|
if (CNField)
|
|
|
|
|
[searchAttributes addObject: CNField];
|
|
|
|
|
if (UIDField)
|
|
|
|
|
[searchAttributes addObject: UIDField];
|
2007-11-18 11:16:25 +01:00
|
|
|
[searchAttributes addObjectsFromArray: mailFields];
|
2009-07-06 23:25:38 +02:00
|
|
|
[searchAttributes addObjectsFromArray: [self _constraintsFields]];
|
2007-05-09 21:06:15 +02:00
|
|
|
[searchAttributes addObjectsFromArray: commonSearchFields];
|
2010-09-20 15:56:29 +02:00
|
|
|
[searchAttributes addObjectUniquely: IDField];
|
2008-10-04 01:12:11 +02:00
|
|
|
|
|
|
|
|
// Add SOGoLDAPContactInfoAttribute from user defaults
|
2009-11-29 05:19:32 +01:00
|
|
|
if ([contactInfoAttribute length])
|
|
|
|
|
[searchAttributes addObjectUniquely: contactInfoAttribute];
|
|
|
|
|
|
2009-05-12 21:56:39 +02:00
|
|
|
// Add IMAP hostname from user defaults
|
2009-10-09 00:34:52 +02:00
|
|
|
if ([IMAPHostField length])
|
|
|
|
|
[searchAttributes addObjectUniquely: IMAPHostField];
|
2007-05-09 21:06:15 +02:00
|
|
|
}
|
2009-10-09 00:34:52 +02:00
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
return searchAttributes;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-13 17:01:21 +02:00
|
|
|
- (NSArray *) allEntryIDs
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
|
|
|
|
NSEnumerator *entries;
|
|
|
|
|
NGLdapEntry *currentEntry;
|
2009-09-30 17:11:47 +02:00
|
|
|
NGLdapConnection *ldapConnection;
|
2007-05-09 21:06:15 +02:00
|
|
|
NSString *value;
|
2009-09-30 17:11:47 +02:00
|
|
|
NSArray *attributes;
|
|
|
|
|
NSMutableArray *ids;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
ids = [NSMutableArray array];
|
|
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapConnection = [self _ldapConnection];
|
|
|
|
|
attributes = [NSArray arrayWithObject: IDField];
|
|
|
|
|
if ([_scope caseInsensitiveCompare: @"BASE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection baseSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: nil
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
else if ([_scope caseInsensitiveCompare: @"ONE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection flatSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: nil
|
|
|
|
|
attributes: attributes];
|
2008-09-08 16:54:33 +02:00
|
|
|
else
|
2009-09-30 17:11:47 +02:00
|
|
|
entries = [ldapConnection deepSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: nil
|
|
|
|
|
attributes: attributes];
|
2008-09-08 16:54:33 +02:00
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
while ((currentEntry = [entries nextObject]))
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
value = [[currentEntry attributeWithName: IDField]
|
2007-05-09 21:06:15 +02:00
|
|
|
stringValueAtIndex: 0];
|
2009-09-30 17:11:47 +02:00
|
|
|
if ([value length] > 0)
|
|
|
|
|
[ids addObject: value];
|
2007-05-09 21:06:15 +02:00
|
|
|
}
|
2008-09-08 16:54:33 +02:00
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
return ids;
|
|
|
|
|
}
|
|
|
|
|
|
2007-11-18 11:16:25 +01:00
|
|
|
- (void) _fillEmailsOfEntry: (NGLdapEntry *) ldapEntry
|
|
|
|
|
intoContactEntry: (NSMutableDictionary *) contactEntry
|
|
|
|
|
{
|
|
|
|
|
NSEnumerator *emailFields;
|
2009-05-12 21:56:39 +02:00
|
|
|
NSString *currentFieldName, *ldapValue;
|
2007-11-18 11:16:25 +01:00
|
|
|
NSMutableArray *emails;
|
2008-04-24 21:56:55 +02:00
|
|
|
NSArray *allValues;
|
2007-11-18 11:16:25 +01:00
|
|
|
|
2009-09-25 16:42:33 +02:00
|
|
|
emails = [[NSMutableArray alloc] init];
|
2007-11-18 11:16:25 +01:00
|
|
|
emailFields = [mailFields objectEnumerator];
|
|
|
|
|
while ((currentFieldName = [emailFields nextObject]))
|
|
|
|
|
{
|
2008-04-24 21:56:55 +02:00
|
|
|
allValues = [[ldapEntry attributeWithName: currentFieldName]
|
2008-04-24 22:28:02 +02:00
|
|
|
allStringValues];
|
2008-04-24 21:56:55 +02:00
|
|
|
[emails addObjectsFromArray: allValues];
|
2007-11-18 11:16:25 +01:00
|
|
|
}
|
|
|
|
|
[contactEntry setObject: emails forKey: @"c_emails"];
|
2008-04-24 21:56:55 +02:00
|
|
|
[emails release];
|
2009-05-12 21:56:39 +02:00
|
|
|
|
|
|
|
|
if (IMAPHostField)
|
|
|
|
|
{
|
|
|
|
|
ldapValue = [[ldapEntry attributeWithName: IMAPHostField] stringValueAtIndex: 0];
|
|
|
|
|
if ([ldapValue length] > 0)
|
|
|
|
|
[contactEntry setObject: ldapValue forKey: @"c_imaphostname"];
|
|
|
|
|
}
|
2007-11-18 11:16:25 +01:00
|
|
|
}
|
|
|
|
|
|
2007-11-26 21:41:59 +01:00
|
|
|
- (void) _fillConstraints: (NGLdapEntry *) ldapEntry
|
|
|
|
|
forModule: (NSString *) module
|
|
|
|
|
intoContactEntry: (NSMutableDictionary *) contactEntry
|
|
|
|
|
{
|
|
|
|
|
NSDictionary *constraints;
|
|
|
|
|
NSEnumerator *matches;
|
|
|
|
|
NSString *currentMatch, *currentValue, *ldapValue;
|
|
|
|
|
BOOL result;
|
|
|
|
|
|
|
|
|
|
result = YES;
|
|
|
|
|
|
|
|
|
|
constraints = [modulesConstraints objectForKey: module];
|
|
|
|
|
if (constraints)
|
|
|
|
|
{
|
|
|
|
|
matches = [[constraints allKeys] objectEnumerator];
|
|
|
|
|
currentMatch = [matches nextObject];
|
|
|
|
|
while (result && currentMatch)
|
|
|
|
|
{
|
|
|
|
|
ldapValue = [[ldapEntry attributeWithName: currentMatch]
|
|
|
|
|
stringValueAtIndex: 0];
|
|
|
|
|
currentValue = [constraints objectForKey: currentMatch];
|
2008-08-21 21:19:11 +02:00
|
|
|
if ([ldapValue caseInsensitiveMatches: currentValue])
|
2007-11-26 21:41:59 +01:00
|
|
|
currentMatch = [matches nextObject];
|
|
|
|
|
else
|
|
|
|
|
result = NO;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
[contactEntry setObject: [NSNumber numberWithBool: result]
|
|
|
|
|
forKey: [NSString stringWithFormat: @"%@Access", module]];
|
|
|
|
|
}
|
|
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
- (NSDictionary *) _convertLDAPEntryToContact: (NGLdapEntry *) ldapEntry
|
|
|
|
|
{
|
|
|
|
|
NSMutableDictionary *contactEntry;
|
|
|
|
|
NSEnumerator *attributes;
|
|
|
|
|
NSString *currentAttribute, *value;
|
2009-09-25 16:42:33 +02:00
|
|
|
NSMutableArray *classes;
|
|
|
|
|
id o;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
contactEntry = [NSMutableDictionary dictionary];
|
2009-08-13 20:34:54 +02:00
|
|
|
[contactEntry setObject: [ldapEntry dn] forKey: @"dn"];
|
2009-09-10 21:52:09 +02:00
|
|
|
attributes = [[self _searchAttributes] objectEnumerator];
|
2009-08-17 11:48:04 +02:00
|
|
|
|
2009-09-25 16:42:33 +02:00
|
|
|
// We get our objectClass attribute values. We lowercase
|
|
|
|
|
// everything for ease of search after.
|
|
|
|
|
o = [ldapEntry objectClasses];
|
|
|
|
|
classes = nil;
|
|
|
|
|
|
|
|
|
|
if (o)
|
|
|
|
|
{
|
|
|
|
|
int i, c;
|
|
|
|
|
|
|
|
|
|
classes = [NSMutableArray arrayWithArray: o];
|
|
|
|
|
c = [classes count];
|
|
|
|
|
for (i = 0; i < c; i++)
|
|
|
|
|
[classes replaceObjectAtIndex: i
|
|
|
|
|
withObject: [[classes objectAtIndex: i] lowercaseString]];
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-10 20:31:20 +02:00
|
|
|
if (classes)
|
|
|
|
|
{
|
|
|
|
|
[contactEntry setObject: classes
|
2009-09-25 16:42:33 +02:00
|
|
|
forKey: @"objectclasses"];
|
2009-09-10 20:31:20 +02:00
|
|
|
|
2009-09-25 16:42:33 +02:00
|
|
|
// We check if our entry is a group. If so, we set the
|
|
|
|
|
// 'isGroup' custom attribute.
|
2009-09-10 20:31:20 +02:00
|
|
|
if ([classes containsObject: @"group"] ||
|
2009-09-25 16:42:33 +02:00
|
|
|
[classes containsObject: @"groupofnames"] ||
|
|
|
|
|
[classes containsObject: @"groupofuniquenames"] ||
|
|
|
|
|
[classes containsObject: @"posixgroup"])
|
2009-09-10 20:31:20 +02:00
|
|
|
{
|
|
|
|
|
[contactEntry setObject: [NSNumber numberWithInt: 1]
|
|
|
|
|
forKey: @"isGroup"];
|
|
|
|
|
}
|
|
|
|
|
}
|
2009-09-25 16:42:33 +02:00
|
|
|
|
2008-04-25 17:16:58 +02:00
|
|
|
while ((currentAttribute = [attributes nextObject]))
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
|
|
|
|
value = [[ldapEntry attributeWithName: currentAttribute]
|
|
|
|
|
stringValueAtIndex: 0];
|
2009-09-25 16:42:33 +02:00
|
|
|
|
|
|
|
|
// It's important here to set our attributes' key in lowercase.
|
2007-05-09 21:06:15 +02:00
|
|
|
if (value)
|
2009-09-25 16:42:33 +02:00
|
|
|
[contactEntry setObject: value forKey: [currentAttribute lowercaseString]];
|
2007-05-09 21:06:15 +02:00
|
|
|
}
|
2009-09-25 16:42:33 +02:00
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
value = [[ldapEntry attributeWithName: IDField] stringValueAtIndex: 0];
|
|
|
|
|
if (!value)
|
|
|
|
|
value = @"";
|
|
|
|
|
[contactEntry setObject: value forKey: @"c_name"];
|
|
|
|
|
value = [[ldapEntry attributeWithName: UIDField] stringValueAtIndex: 0];
|
|
|
|
|
if (!value)
|
|
|
|
|
value = @"";
|
2009-05-03 19:50:57 +02:00
|
|
|
// else
|
|
|
|
|
// {
|
|
|
|
|
// Eventually, we could check at this point if the entry is a group
|
|
|
|
|
// and prefix the UID with a "@"
|
|
|
|
|
// }
|
2007-05-09 21:06:15 +02:00
|
|
|
[contactEntry setObject: value forKey: @"c_uid"];
|
|
|
|
|
value = [[ldapEntry attributeWithName: CNField] stringValueAtIndex: 0];
|
|
|
|
|
if (!value)
|
|
|
|
|
value = @"";
|
|
|
|
|
[contactEntry setObject: value forKey: @"c_cn"];
|
2009-11-29 05:19:32 +01:00
|
|
|
|
|
|
|
|
if (contactInfoAttribute)
|
|
|
|
|
{
|
|
|
|
|
value = [[ldapEntry attributeWithName: contactInfoAttribute]
|
|
|
|
|
stringValueAtIndex: 0];
|
|
|
|
|
if (!value)
|
|
|
|
|
value = @"";
|
|
|
|
|
}
|
|
|
|
|
else
|
|
|
|
|
value = @"";
|
|
|
|
|
[contactEntry setObject: value forKey: @"c_info"];
|
|
|
|
|
|
2009-11-29 22:44:04 +01:00
|
|
|
if (domain)
|
2009-11-29 05:19:32 +01:00
|
|
|
value = domain;
|
|
|
|
|
else
|
|
|
|
|
value = @"";
|
|
|
|
|
[contactEntry setObject: value forKey: @"c_domain"];
|
|
|
|
|
|
2007-11-18 11:16:25 +01:00
|
|
|
[self _fillEmailsOfEntry: ldapEntry intoContactEntry: contactEntry];
|
2007-11-26 21:41:59 +01:00
|
|
|
[self _fillConstraints: ldapEntry forModule: @"Calendar"
|
|
|
|
|
intoContactEntry: (NSMutableDictionary *) contactEntry];
|
|
|
|
|
[self _fillConstraints: ldapEntry forModule: @"Mail"
|
|
|
|
|
intoContactEntry: (NSMutableDictionary *) contactEntry];
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
return contactEntry;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (NSArray *) fetchContactsMatching: (NSString *) match
|
|
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
NGLdapConnection *ldapConnection;
|
2007-05-09 21:06:15 +02:00
|
|
|
NGLdapEntry *currentEntry;
|
|
|
|
|
NSEnumerator *entries;
|
2009-09-30 17:11:47 +02:00
|
|
|
NSMutableArray *contacts;
|
|
|
|
|
EOQualifier *qualifier;
|
|
|
|
|
NSArray *attributes;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
contacts = [NSMutableArray array];
|
|
|
|
|
|
2007-05-10 16:56:47 +02:00
|
|
|
if ([match length] > 0)
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapConnection = [self _ldapConnection];
|
|
|
|
|
qualifier = [self _qualifierForFilter: match];
|
|
|
|
|
attributes = [self _searchAttributes];
|
2010-03-30 16:32:27 +02:00
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
if ([_scope caseInsensitiveCompare: @"BASE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection baseSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
else if ([_scope caseInsensitiveCompare: @"ONE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection flatSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
else /* we do it like before */
|
|
|
|
|
entries = [ldapConnection deepSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
while ((currentEntry = [entries nextObject]))
|
|
|
|
|
[contacts addObject:
|
|
|
|
|
[self _convertLDAPEntryToContact: currentEntry]];
|
2007-05-09 21:06:15 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return contacts;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-13 17:01:21 +02:00
|
|
|
- (NSDictionary *) lookupContactEntry: (NSString *) theID
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
|
|
|
|
NGLdapEntry *ldapEntry;
|
2009-09-30 17:11:47 +02:00
|
|
|
NGLdapConnection *ldapConnection;
|
|
|
|
|
NSEnumerator *entries;
|
|
|
|
|
EOQualifier *qualifier;
|
|
|
|
|
NSArray *attributes;
|
|
|
|
|
NSString *s;
|
|
|
|
|
NSDictionary *contactEntry;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
2007-05-10 16:56:47 +02:00
|
|
|
contactEntry = nil;
|
|
|
|
|
|
2009-04-13 17:01:21 +02:00
|
|
|
if ([theID length] > 0)
|
2007-05-10 16:56:47 +02:00
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapConnection = [self _ldapConnection];
|
|
|
|
|
s = [NSString stringWithFormat: @"(%@='%@')",
|
2010-09-24 19:50:40 +02:00
|
|
|
IDField, SafeLDAPCriteria(theID)];
|
2009-09-30 17:11:47 +02:00
|
|
|
qualifier = [EOQualifier qualifierWithQualifierFormat: s];
|
|
|
|
|
attributes = [self _searchAttributes];
|
2009-06-04 16:02:45 +02:00
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
if ([_scope caseInsensitiveCompare: @"BASE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection baseSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
else if ([_scope caseInsensitiveCompare: @"ONE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection flatSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
2008-09-08 16:54:33 +02:00
|
|
|
else
|
2009-09-30 17:11:47 +02:00
|
|
|
entries = [ldapConnection deepSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
2008-09-08 16:54:33 +02:00
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapEntry = [entries nextObject];
|
|
|
|
|
if (ldapEntry)
|
|
|
|
|
contactEntry = [self _convertLDAPEntryToContact: ldapEntry];
|
2007-05-10 16:56:47 +02:00
|
|
|
}
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
return contactEntry;
|
|
|
|
|
}
|
|
|
|
|
|
2009-04-13 17:01:21 +02:00
|
|
|
- (NSDictionary *) lookupContactEntryWithUIDorEmail: (NSString *) uid
|
2007-05-09 21:06:15 +02:00
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
NGLdapConnection *ldapConnection;
|
2007-05-09 21:06:15 +02:00
|
|
|
NGLdapEntry *ldapEntry;
|
2009-09-30 17:11:47 +02:00
|
|
|
NSEnumerator *entries;
|
|
|
|
|
EOQualifier *qualifier;
|
|
|
|
|
NSArray *attributes;
|
|
|
|
|
NSDictionary *contactEntry;
|
2007-05-09 21:06:15 +02:00
|
|
|
|
2007-05-10 16:56:47 +02:00
|
|
|
contactEntry = nil;
|
|
|
|
|
|
|
|
|
|
if ([uid length] > 0)
|
|
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapConnection = [self _ldapConnection];
|
|
|
|
|
qualifier = [self _qualifierForUIDFilter: uid];
|
|
|
|
|
attributes = [self _searchAttributes];
|
|
|
|
|
|
|
|
|
|
if ([_scope caseInsensitiveCompare: @"BASE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection baseSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
else if ([_scope caseInsensitiveCompare: @"ONE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection flatSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
2008-09-08 16:54:33 +02:00
|
|
|
else
|
2009-09-30 17:11:47 +02:00
|
|
|
entries = [ldapConnection deepSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
|
|
|
|
|
ldapEntry = [entries nextObject];
|
2007-05-10 16:56:47 +02:00
|
|
|
if (ldapEntry)
|
2009-09-30 17:11:47 +02:00
|
|
|
contactEntry = [self _convertLDAPEntryToContact: ldapEntry];
|
2007-05-10 16:56:47 +02:00
|
|
|
}
|
2007-05-09 21:06:15 +02:00
|
|
|
|
|
|
|
|
return contactEntry;
|
|
|
|
|
}
|
|
|
|
|
|
2009-05-03 19:50:57 +02:00
|
|
|
- (NSString *) lookupLoginByDN: (NSString *) theDN
|
|
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
NGLdapConnection *ldapConnection;
|
2009-05-03 19:50:57 +02:00
|
|
|
NGLdapEntry *entry;
|
|
|
|
|
NSString *login;
|
|
|
|
|
|
|
|
|
|
login = nil;
|
2009-09-30 17:11:47 +02:00
|
|
|
|
|
|
|
|
ldapConnection = [self _ldapConnection];
|
|
|
|
|
entry = [ldapConnection entryAtDN: theDN
|
|
|
|
|
attributes: [NSArray arrayWithObject: UIDField]];
|
|
|
|
|
if (entry)
|
|
|
|
|
login = [[entry attributeWithName: UIDField] stringValueAtIndex: 0];
|
|
|
|
|
|
2009-05-03 19:50:57 +02:00
|
|
|
return login;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (NGLdapEntry *) lookupGroupEntryByUID: (NSString *) theUID
|
|
|
|
|
{
|
|
|
|
|
return [self lookupGroupEntryByAttribute: UIDField
|
|
|
|
|
andValue: theUID];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (NGLdapEntry *) lookupGroupEntryByEmail: (NSString *) theEmail
|
|
|
|
|
{
|
2009-09-10 20:31:20 +02:00
|
|
|
#warning We should support MailFieldNames
|
2009-05-03 19:50:57 +02:00
|
|
|
return [self lookupGroupEntryByAttribute: @"mail"
|
|
|
|
|
andValue: theEmail];
|
|
|
|
|
}
|
|
|
|
|
|
2009-09-10 20:31:20 +02:00
|
|
|
// This method should accept multiple attributes
|
2009-05-03 19:50:57 +02:00
|
|
|
- (NGLdapEntry *) lookupGroupEntryByAttribute: (NSString *) theAttribute
|
|
|
|
|
andValue: (NSString *) theValue
|
2009-04-30 23:17:55 +02:00
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
NSMutableArray *attributes;
|
|
|
|
|
NSEnumerator *entries;
|
|
|
|
|
EOQualifier *qualifier;
|
|
|
|
|
NSString *s;
|
|
|
|
|
NGLdapConnection *ldapConnection;
|
2009-04-30 23:17:55 +02:00
|
|
|
NGLdapEntry *ldapEntry;
|
|
|
|
|
|
2009-05-03 19:50:57 +02:00
|
|
|
if ([theValue length] > 0)
|
2009-04-30 23:17:55 +02:00
|
|
|
{
|
2009-09-30 17:11:47 +02:00
|
|
|
ldapConnection = [self _ldapConnection];
|
2009-04-30 23:17:55 +02:00
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
s = [NSString stringWithFormat: @"(%@='%@')",
|
2010-09-24 19:50:40 +02:00
|
|
|
theAttribute, SafeLDAPCriteria(theValue)];
|
2009-09-30 17:11:47 +02:00
|
|
|
qualifier = [EOQualifier qualifierWithQualifierFormat: s];
|
2009-11-29 05:19:32 +01:00
|
|
|
|
2009-09-30 17:11:47 +02:00
|
|
|
// We look for additional attributes - the ones related to group
|
|
|
|
|
// membership
|
|
|
|
|
attributes = [NSMutableArray arrayWithArray: [self _searchAttributes]];
|
|
|
|
|
[attributes addObject: @"member"];
|
|
|
|
|
[attributes addObject: @"uniqueMember"];
|
|
|
|
|
[attributes addObject: @"memberUid"];
|
|
|
|
|
[attributes addObject: @"memberOf"];
|
|
|
|
|
|
|
|
|
|
if ([_scope caseInsensitiveCompare: @"BASE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection baseSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
else if ([_scope caseInsensitiveCompare: @"ONE"] == NSOrderedSame)
|
|
|
|
|
entries = [ldapConnection flatSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
else
|
|
|
|
|
entries = [ldapConnection deepSearchAtBaseDN: baseDN
|
|
|
|
|
qualifier: qualifier
|
|
|
|
|
attributes: attributes];
|
|
|
|
|
|
|
|
|
|
ldapEntry = [entries nextObject];
|
2009-04-30 23:17:55 +02:00
|
|
|
}
|
2009-09-30 17:11:47 +02:00
|
|
|
else
|
|
|
|
|
ldapEntry = nil;
|
2009-04-30 23:17:55 +02:00
|
|
|
|
|
|
|
|
return ldapEntry;
|
|
|
|
|
}
|
|
|
|
|
|
2007-10-10 20:44:26 +02:00
|
|
|
- (NSString *) sourceID
|
|
|
|
|
{
|
|
|
|
|
return sourceID;
|
|
|
|
|
}
|
|
|
|
|
|
2009-05-03 19:50:57 +02:00
|
|
|
- (NSString *) baseDN
|
|
|
|
|
{
|
|
|
|
|
return baseDN;
|
|
|
|
|
}
|
|
|
|
|
|
2007-05-09 21:06:15 +02:00
|
|
|
@end
|
