Alias

[Patrock]

i have a hierarchy of users in different OUs. one application i use (snipeit) needs the users in a flat hierarchy:

i have to enter a baseDN in the config. this baseDN is appended to my user (cn=userXYZ) to make a bind.

Are there any possibilities to create alias entries for my users, e.g. by a join or similar and add objectclass: alias and aliasedObjectName attributes?

What should be done to write an insert for this , perhaps i'll give it a chance ?

Would an insert on a rootObject with the target DN work ? The insert could then search other DNs for entries and adds objectclass: alias and aliasedObjectName attributes based on a mapping parameter ?

[Patrock]

@mlbiam i have managed to code an Insert which rewrites incoming DNs to multiple targetDNs. Now i can map multiple subtrees to a common DN...

Here is the code, perhaps you can tell me if thats the proper way. If you find it useful, feel free to use it ;)

Config:
server.globalChain=rewrite
server.globalChain.rewrite.className=net.sourceforge.myvd.inserts.mapping.RewriteDN
server.globalChain.rewrite.config.targetBases=ou=test,dc=lan|ou=nextTest,dc=lan|ou=test234,dc=lan
server.globalChain.rewrite.config.sourceBase=dc=alias

/*
 * Copyright 2017 Patrick Pogscheba 
 * 
 * Licensed under the Apache License, Version 2.0 (the "License"); 
 * you may not use this file except in compliance with the License. 
 * You may obtain a copy of the License at 
 * 
 * 		http://www.apache.org/licenses/LICENSE-2.0 
 * 
 * Unless required by applicable law or agreed to in writing, software 
 * distributed under the License is distributed on an "AS IS" BASIS, 
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 
 * See the License for the specific language governing permissions and 
 * limitations under the License.
 */
package net.sourceforge.myvd.inserts.mapping;

import java.util.ArrayList;
import java.util.HashMap;
import java.util.HashSet;
import java.util.Iterator;
import java.util.Properties;
import java.util.StringTokenizer;
import java.util.jar.Attributes.Name;

import com.novell.ldap.LDAPConstraints;
import com.novell.ldap.LDAPException;
import com.novell.ldap.LDAPModification;
import com.novell.ldap.LDAPSearchConstraints;
import com.novell.ldap.util.DN;

import net.sourceforge.myvd.chain.AddInterceptorChain;
import net.sourceforge.myvd.chain.BindInterceptorChain;
import net.sourceforge.myvd.chain.CompareInterceptorChain;
import net.sourceforge.myvd.chain.DeleteInterceptorChain;
import net.sourceforge.myvd.chain.ExetendedOperationInterceptorChain;
import net.sourceforge.myvd.chain.ModifyInterceptorChain;
import net.sourceforge.myvd.chain.PostSearchCompleteInterceptorChain;
import net.sourceforge.myvd.chain.PostSearchEntryInterceptorChain;
import net.sourceforge.myvd.chain.RenameInterceptorChain;
import net.sourceforge.myvd.chain.SearchInterceptorChain;
import net.sourceforge.myvd.core.NameSpace;
import net.sourceforge.myvd.inserts.Insert;
import net.sourceforge.myvd.router.Level;
import net.sourceforge.myvd.types.Attribute;
import net.sourceforge.myvd.types.Bool;
import net.sourceforge.myvd.types.DistinguishedName;
import net.sourceforge.myvd.types.Entry;
import net.sourceforge.myvd.types.ExtendedOperation;
import net.sourceforge.myvd.types.Filter;
import net.sourceforge.myvd.types.Int;
import net.sourceforge.myvd.types.Password;
import net.sourceforge.myvd.types.RequestVariables;
import net.sourceforge.myvd.types.Results;
import net.sourceforge.myvd.util.NamingUtils;

public class RewriteDN implements Insert {

	HashMap<DN,String[]> targetBases = new HashMap<>();
	
	private DN sourceBase;
	NamingUtils utils;
	String[] explodedSourceBase;

	String name;
	public void add(AddInterceptorChain chain, Entry entry,
			LDAPConstraints constraints) throws LDAPException {
		// TODO Auto-generated method stub
		chain.nextAdd(entry, constraints);
	}

	public void bind(BindInterceptorChain chain, DistinguishedName dn,
			Password pwd, LDAPConstraints constraints) throws LDAPException {
		// TODO Auto-generated method stub
		System.out.println("AliasInterceptor.bind : " + chain.getPos() + ", " + dn.toString());
		if(!dn.getDN().isDescendantOf(this.sourceBase))
		{
			chain.nextBind(dn, pwd, constraints);
		}
		else
		{
			int exceptions=0;
			for (HashMap.Entry<DN, String[]> entry : targetBases.entrySet()) {
				DistinguishedName newDN = new DistinguishedName(
						utils.getRemoteMappedDN(dn.getDN(),explodedSourceBase,entry.getValue()));
				
				chain.setBindDN(newDN);
				try {
					System.out.println("AliasInterceptor.bind : nextBind " + newDN.toString());
					chain.nextBind(newDN, pwd, constraints);
					System.out.println("AliasInterceptor.bind : nextBindFinished" + newDN.toString());
					break;
				} 
				catch(LDAPException e)
				{
					e.printStackTrace();
					System.out.println("AliasInterceptor.bind : exception" + newDN.toString());
					exceptions++;
				}
				finally
				{
					System.out.println("AliasInterceptor.bind : finally" + newDN.toString());		
				}
			}
			
			if(exceptions== targetBases.size())
			{
				throw new LDAPException("Could not resolve or bind with rewritten DN", LDAPException.INVALID_DN_SYNTAX, "");
			}
		}

	}
	


	public void compare(CompareInterceptorChain chain, DistinguishedName dn,
			Attribute attrib, LDAPConstraints constraints) throws LDAPException {
		// TODO Auto-generated method stub
		chain.nextCompare(dn, attrib, constraints);
	}

	public void configure(String name, Properties props, NameSpace nameSpace)
			throws LDAPException {	
		this.name = name;	
		this.sourceBase = new DN(props.getProperty("sourceBase"));
			
		this.explodedSourceBase = this.sourceBase.explodeDN(false);
		this.utils = new NamingUtils();
		
		StringTokenizer toker;
		toker = new StringTokenizer(props.getProperty("targetBases"),"|");
		while (toker.hasMoreTokens()) {
			DN dn = new DN(toker.nextToken());		
			targetBases.put(dn, dn.explodeDN(false) );
		}	
	}

	public void delete(DeleteInterceptorChain chain, DistinguishedName dn,
			LDAPConstraints constraints) throws LDAPException {
		// TODO Auto-generated method stub
		 chain.nextDelete(dn, constraints);
	}

	public void extendedOperation(ExetendedOperationInterceptorChain chain,
			ExtendedOperation op, LDAPConstraints constraints)
			throws LDAPException {
		// TODO Auto-generated method stub
		chain.nextExtendedOperations(op, constraints);
	}

	public void modify(ModifyInterceptorChain chain, DistinguishedName dn,
			ArrayList<LDAPModification> mods, LDAPConstraints constraints)
			throws LDAPException {
		// TODO Auto-generated method stub
		chain.nextModify(dn, mods, constraints);
	}

	public void postSearchComplete(PostSearchCompleteInterceptorChain chain,
			DistinguishedName base, Int scope, Filter filter,
			ArrayList<Attribute> attributes, Bool typesOnly,
			LDAPSearchConstraints constraints) throws LDAPException {
		// TODO Auto-generated method stub
		//System.out.println("AliasInterceptor.postSearchEntry : " + chain.getPos() + ", " + base.toString());
		chain.nextPostSearchComplete(base, scope, filter, attributes, typesOnly, constraints);

	}

	public void postSearchEntry(PostSearchEntryInterceptorChain chain,
			Entry entry, DistinguishedName base, Int scope, Filter filter,
			ArrayList<Attribute> attributes, Bool typesOnly,
			LDAPSearchConstraints constraints) throws LDAPException {
		// TODO Auto-generated method stub
		//System.out.println("AliasInterceptor.postSearchEntry : " + chain.getPos() + ", " + base.toString());
		chain.nextPostSearchEntry(entry, base, scope, filter, attributes, typesOnly, constraints);
	}

	public void rename(RenameInterceptorChain chain, DistinguishedName dn,
			DistinguishedName newRdn, Bool deleteOldRdn,
			LDAPConstraints constraints) throws LDAPException {
		// TODO Auto-generated method stub
		chain.nextRename(dn, newRdn, deleteOldRdn, constraints);
	}

	public void rename(RenameInterceptorChain chain, DistinguishedName dn,
			DistinguishedName newRdn, DistinguishedName newParentDN,
			Bool deleteOldRdn, LDAPConstraints constraints)
			throws LDAPException {
		// TODO Auto-generated method stub
		
		chain.nextRename(dn, newRdn, newParentDN, deleteOldRdn, constraints);
	}

	public void search(SearchInterceptorChain chain, DistinguishedName base,
			Int scope, Filter filter, ArrayList<Attribute> attributes,
			Bool typesOnly, Results results, LDAPSearchConstraints constraints)
			throws LDAPException {
		// TODO Auto-generated method stub
		System.out.println("AliasInterceptor.search : " + chain.getPos() + ", " + base.toString());
		if(!base.getDN().isDescendantOf(this.sourceBase))
		{
			chain.nextSearch(base, scope, filter, attributes, typesOnly, results, constraints);
		}
		else
		{
			int exceptions=0;
			for (HashMap.Entry<DN, String[]> entry : targetBases.entrySet()) {
				DistinguishedName newDN = new DistinguishedName(
						utils.getRemoteMappedDN(base.getDN(),explodedSourceBase,entry.getValue()));
				
				//chain.setBindDN(newDN);
				try {
					System.out.println("AliasInterceptor.search : nextSearch " + newDN.toString());
					chain.nextSearch(newDN, scope, filter, attributes, typesOnly, results, constraints);
					System.out.println("AliasInterceptor.search : nextSearchFinished" + newDN.toString());
					//break;
				} 
				catch(LDAPException e)
				{
					e.printStackTrace();
					System.out.println("AliasInterceptor.search : exception" + newDN.toString());
					exceptions++;
				}
				finally
				{
					System.out.println("AliasInterceptor.search : finally" + newDN.toString());		
				}
			}

		}
	}
	
	public String getName() {
		return this.name;
	}

	public void shutdown() {
		// TODO Auto-generated method stub	
	}
}