Mercurial > dovecot > original-hg > dovecot-1.2
view src/auth/userdb-ldap.c @ 9008:fc4f65a4ca60 HEAD
virtual: Don't show mailboxes as \Noselect.
| author | Timo Sirainen <tss@iki.fi> |
|---|---|
| date | Fri, 01 May 2009 14:56:52 -0400 |
| parents | 643a96aec996 |
| children | a31fb9b7179a |
line wrap: on
line source
/* Copyright (c) 2003-2009 Dovecot authors, see the included COPYING file */ #include "common.h" #include "userdb.h" #if defined(USERDB_LDAP) && (defined(BUILTIN_LDAP) || defined(PLUGIN_BUILD)) #include "hash.h" #include "str.h" #include "var-expand.h" #include "auth-cache.h" #include "db-ldap.h" #include <ldap.h> #include <stdlib.h> struct ldap_userdb_module { struct userdb_module module; struct ldap_connection *conn; }; struct userdb_ldap_request { struct ldap_request_search request; userdb_callback_t *userdb_callback; }; static void ldap_query_get_result(struct ldap_connection *conn, LDAPMessage *entry, struct auth_request *auth_request) { struct db_ldap_result_iterate_context *ldap_iter; const char *name, *const *values; auth_request_init_userdb_reply(auth_request); ldap_iter = db_ldap_result_iterate_init(conn, entry, auth_request, conn->user_attr_map); while (db_ldap_result_iterate_next_all(ldap_iter, &name, &values)) { auth_request_set_userdb_field_values(auth_request, name, values); } } static void userdb_ldap_lookup_callback(struct ldap_connection *conn, struct ldap_request *request, LDAPMessage *res) { struct userdb_ldap_request *urequest = (struct userdb_ldap_request *) request; struct auth_request *auth_request = urequest->request.request.auth_request; LDAPMessage *entry; enum userdb_result result = USERDB_RESULT_INTERNAL_FAILURE; if (res != NULL) { entry = ldap_first_entry(conn->ld, res); if (entry == NULL) { result = USERDB_RESULT_USER_UNKNOWN; auth_request_log_info(auth_request, "ldap", "Unknown user"); } else { ldap_query_get_result(conn, entry, auth_request); if (ldap_next_entry(conn->ld, entry) == NULL) result = USERDB_RESULT_OK; else { auth_request_log_error(auth_request, "ldap", "Multiple replies found for user"); } } } urequest->userdb_callback(result, auth_request); auth_request_unref(&auth_request); } static void userdb_ldap_lookup(struct auth_request *auth_request, userdb_callback_t *callback) { struct userdb_module *_module = auth_request->userdb->userdb; struct ldap_userdb_module *module = (struct ldap_userdb_module *)_module; struct ldap_connection *conn = module->conn; const struct var_expand_table *vars; const char **attr_names = (const char **)conn->user_attr_names; struct userdb_ldap_request *request; string_t *str; auth_request_ref(auth_request); request = p_new(auth_request->pool, struct userdb_ldap_request, 1); request->userdb_callback = callback; vars = auth_request_get_var_expand_table(auth_request, ldap_escape); str = t_str_new(512); var_expand(str, conn->set.base, vars); request->request.base = p_strdup(auth_request->pool, str_c(str)); str_truncate(str, 0); var_expand(str, conn->set.user_filter, vars); request->request.filter = p_strdup(auth_request->pool, str_c(str)); request->request.attributes = conn->user_attr_names; auth_request_log_debug(auth_request, "ldap", "user search: " "base=%s scope=%s filter=%s fields=%s", request->request.base, conn->set.scope, request->request.filter, attr_names == NULL ? "(all)" : t_strarray_join(attr_names, ",")); request->request.request.auth_request = auth_request; request->request.request.callback = userdb_ldap_lookup_callback; db_ldap_request(conn, &request->request.request); } static struct userdb_module * userdb_ldap_preinit(struct auth_userdb *auth_userdb, const char *args) { struct ldap_userdb_module *module; struct ldap_connection *conn; module = p_new(auth_userdb->auth->pool, struct ldap_userdb_module, 1); module->conn = conn = db_ldap_init(args); conn->user_attr_map = hash_table_create(default_pool, conn->pool, 0, str_hash, (hash_cmp_callback_t *)strcmp); db_ldap_set_attrs(conn, conn->set.user_attrs, &conn->user_attr_names, conn->user_attr_map, NULL); module->module.cache_key = auth_cache_parse_key(auth_userdb->auth->pool, t_strconcat(conn->set.base, conn->set.user_filter, NULL)); return &module->module; } static void userdb_ldap_init(struct userdb_module *_module, const char *args ATTR_UNUSED) { struct ldap_userdb_module *module = (struct ldap_userdb_module *)_module; (void)db_ldap_connect(module->conn); } static void userdb_ldap_deinit(struct userdb_module *_module) { struct ldap_userdb_module *module = (struct ldap_userdb_module *)_module; db_ldap_unref(&module->conn); } struct userdb_module_interface userdb_ldap = { "ldap", userdb_ldap_preinit, userdb_ldap_init, userdb_ldap_deinit, userdb_ldap_lookup }; #else struct userdb_module_interface userdb_ldap = { MEMBER(name) "ldap" }; #endif