node-ldapjs/lib/client/client.js

1226 lines
36 KiB
JavaScript
Raw Normal View History

2011-08-04 20:32:01 +00:00
// Copyright 2011 Mark Cavage, Inc. All rights reserved.
var EventEmitter = require('events').EventEmitter;
var net = require('net');
var tls = require('tls');
var util = require('util');
var once = require('once');
var backoff = require('backoff');
var vasync = require('vasync');
2011-08-04 20:32:01 +00:00
2012-07-09 12:23:53 +00:00
var assert = require('assert-plus');
var Attribute = require('../attribute');
var Change = require('../change');
var Control = require('../controls/index').Control;
var PagedResultsControl = require('../controls/index').PagedResultsControl;
var Protocol = require('../protocol');
var dn = require('../dn');
var errors = require('../errors');
var filters = require('../filters');
var messages = require('../messages');
var url = require('../url');
2011-08-04 20:32:01 +00:00
///--- Globals
var AbandonRequest = messages.AbandonRequest;
2011-08-04 20:32:01 +00:00
var AddRequest = messages.AddRequest;
var BindRequest = messages.BindRequest;
var CompareRequest = messages.CompareRequest;
var DeleteRequest = messages.DeleteRequest;
var ExtendedRequest = messages.ExtendedRequest;
var ModifyRequest = messages.ModifyRequest;
var ModifyDNRequest = messages.ModifyDNRequest;
var SearchRequest = messages.SearchRequest;
var UnbindRequest = messages.UnbindRequest;
2011-11-08 21:10:39 +00:00
var UnbindResponse = messages.UnbindResponse;
2011-08-04 20:32:01 +00:00
var LDAPResult = messages.LDAPResult;
var SearchEntry = messages.SearchEntry;
var SearchReference = messages.SearchReference;
2011-08-04 20:32:01 +00:00
var SearchResponse = messages.SearchResponse;
var Parser = messages.Parser;
var Filter = filters.Filter;
var PresenceFilter = filters.PresenceFilter;
var ConnectionError = errors.ConnectionError;
var CMP_EXPECT = [errors.LDAP_COMPARE_TRUE, errors.LDAP_COMPARE_FALSE];
2011-08-04 20:32:01 +00:00
var MAX_MSGID = Math.pow(2, 31) - 1;
// node 0.6 got rid of FDs, so make up a client id for logging
var CLIENT_ID = 0;
2011-08-04 20:32:01 +00:00
///--- Internal Helpers
function nextClientId() {
if (++CLIENT_ID === MAX_MSGID)
return 1;
2011-08-04 20:32:01 +00:00
return CLIENT_ID;
}
2011-08-04 20:32:01 +00:00
function validateControls(controls) {
if (Array.isArray(controls)) {
2012-02-24 00:02:52 +00:00
controls.forEach(function (c) {
2011-08-04 20:32:01 +00:00
if (!(c instanceof Control))
throw new TypeError('controls must be [Control]');
});
} else if (controls instanceof Control) {
controls = [controls];
} else {
throw new TypeError('controls must be [Control]');
}
return controls;
}
/**
* Queue to contain LDAP requests.
*
* @param {Object} opts queue options
*
* Accepted Options:
* - size: Maximum queue size
* - timeout: Set timeout between first queue insertion and queue flush.
*/
function RequestQueue(opts) {
if (!opts || typeof (opts) !== 'object') {
opts = {};
}
this.size = (opts.size > 0) ? opts.size : Infinity;
this.timeout = (opts.timeout > 0) ? opts.timeout : 0;
this._queue = [];
this._timer = null;
}
/**
* Insert request into queue.
*
*/
RequestQueue.prototype.queue = function queue(message, expect, emitter, cb) {
if (this._queue.length >= this.maxLength) {
return false;
}
this._queue.push([message, expect, emitter, cb]);
if (this.maxAge > 0) {
if (this._timer !== null) {
this._timer = setTimeout(this.purge.bind(this), this.maxAge);
}
}
return true;
};
/**
* Process all queued requests with callback.
*/
RequestQueue.prototype.flush = function flush(cb) {
if (this._timer) {
clearTimeout(this._timer);
this._timer = null;
}
var items = this._queue;
this._queue = [];
items.forEach(function (req) {
cb(req[0], req[1], req[2], req[3]);
});
};
/**
* Purge all queued requests with an error.
*/
RequestQueue.prototype.purge = function purge() {
this.flush(function (msg, expect, emitter, cb) {
cb(new Error('RequestQueue timeout'));
});
};
2011-08-04 20:32:01 +00:00
///--- API
/**
* Constructs a new client.
*
* The options object is required, and must contain either a URL (string) or
* a socketPath (string); the socketPath is only if you want to talk to an LDAP
2012-02-18 08:54:22 +00:00
* server over a Unix Domain Socket. Additionally, you can pass in a bunyan
* option that is the result of `new Logger()`, presumably after you've
2011-08-04 20:32:01 +00:00
* configured it.
*
* @param {Object} options must have either url or socketPath.
* @throws {TypeError} on bad input.
*/
function Client(options) {
assert.ok(options);
2011-08-04 20:32:01 +00:00
EventEmitter.call(this, options);
var _url;
if (options.url)
_url = url.parse(options.url);
this.host = _url ? _url.hostname : undefined;
this.port = _url ? _url.port : false;
this.secure = _url ? _url.secure : false;
this.url = _url;
this.tlsOptions = options.tlsOptions;
this.socketPath = options.socketPath || false;
this.log = options.log.child({clazz: 'Client'}, true);
this.timeout = parseInt((options.timeout || 0), 10);
this.connectTimeout = parseInt((options.connectTimeout || 0), 10);
this.idleTimeout = parseInt((options.idleTimeout || 0), 10);
if (options.reconnect) {
this.reconnect = {
initialDelay: parseInt(options.reconnect.initialDelay || 100, 10),
maxDelay: parseInt(options.reconnect.maxDelay || 10000, 10),
failAfter: parseInt(options.reconnect.failAfter || 0, 10)
};
}
this.queuing = (options.queuing !== undefined) ? options.queuing : true;
if (this.queuing) {
this._queue = new RequestQueue({
size: parseInt((options.queueSize || 0), 10),
timeout: parseInt((options.queueTimeout || 0), 10)
});
}
this.socket = null;
this.connected = false;
this._connect();
2011-08-04 20:32:01 +00:00
}
util.inherits(Client, EventEmitter);
module.exports = Client;
/**
* Sends an abandon request to the LDAP server.
*
* The callback will be invoked as soon as the data is flushed out to the
* network, as there is never a response from abandon.
*
* @param {Number} messageID the messageID to abandon.
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err).
* @throws {TypeError} on invalid input.
*/
Client.prototype.abandon = function abandon(messageID, controls, callback) {
2012-07-09 12:23:53 +00:00
assert.number(messageID, 'messageID');
if (typeof (controls) === 'function') {
callback = controls;
controls = [];
} else {
2012-01-24 17:43:46 +00:00
controls = validateControls(controls);
}
2012-07-09 12:23:53 +00:00
assert.func(callback, 'callback');
var req = new AbandonRequest({
abandonID: messageID,
controls: controls
});
return this._send(req, 'abandon', null, callback);
};
2011-08-04 20:32:01 +00:00
/**
* Adds an entry to the LDAP server.
*
* Entry can be either [Attribute] or a plain JS object where the
* values are either a plain value or an array of values. Any value (that's
* not an array) will get converted to a string, so keep that in mind.
*
2011-08-04 20:32:01 +00:00
* @param {String} name the DN of the entry to add.
* @param {Object} entry an array of Attributes to be added or a JS object.
2011-08-04 20:32:01 +00:00
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err, res).
* @throws {TypeError} on invalid input.
*/
Client.prototype.add = function add(name, entry, controls, callback) {
2012-07-09 12:23:53 +00:00
assert.string(name, 'name');
assert.object(entry, 'entry');
if (typeof (controls) === 'function') {
2011-08-04 20:32:01 +00:00
callback = controls;
controls = [];
} else {
2012-01-24 17:43:46 +00:00
controls = validateControls(controls);
2011-08-04 20:32:01 +00:00
}
2012-07-09 12:23:53 +00:00
assert.func(callback, 'callback');
2011-08-04 20:32:01 +00:00
if (Array.isArray(entry)) {
2012-02-24 00:02:52 +00:00
entry.forEach(function (a) {
if (!Attribute.isAttribute(a))
throw new TypeError('entry must be an Array of Attributes');
});
} else {
var save = entry;
entry = [];
2012-02-24 00:02:52 +00:00
Object.keys(save).forEach(function (k) {
var attr = new Attribute({type: k});
if (Array.isArray(save[k])) {
2012-02-24 00:02:52 +00:00
save[k].forEach(function (v) {
attr.addValue(v.toString());
});
} else {
attr.addValue(save[k].toString());
}
entry.push(attr);
});
}
2011-08-04 20:32:01 +00:00
var req = new AddRequest({
entry: dn.parse(name),
attributes: entry,
2011-08-04 20:32:01 +00:00
controls: controls
});
return this._send(req, [errors.LDAP_SUCCESS], null, callback);
};
/**
* Performs a simple authentication against the server.
*
* @param {String} name the DN to bind as.
* @param {String} credentials the userPassword associated with name.
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err, res).
* @throws {TypeError} on invalid input.
*/
Client.prototype.bind = function bind(name,
credentials,
controls,
callback,
_bypass) {
if (typeof (name) !== 'string' && !(name instanceof dn.DN))
throw new TypeError('name (string) required');
2012-07-09 12:23:53 +00:00
assert.string(credentials, 'credentials');
if (typeof (controls) === 'function') {
callback = controls;
controls = [];
} else {
controls = validateControls(controls);
}
2012-07-09 12:23:53 +00:00
assert.func(callback, 'callback');
var req = new BindRequest({
name: name || '',
authentication: 'Simple',
credentials: credentials || '',
controls: controls
});
return this._send(req, [errors.LDAP_SUCCESS], null, callback, _bypass);
2011-08-04 20:32:01 +00:00
};
/**
* Compares an attribute/value pair with an entry on the LDAP server.
*
* @param {String} name the DN of the entry to compare attributes with.
* @param {String} attr name of an attribute to check.
2011-08-04 20:32:01 +00:00
* @param {String} value value of an attribute to check.
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err, boolean, res).
* @throws {TypeError} on invalid input.
*/
Client.prototype.compare = function compare(name,
attr,
value,
controls,
callback) {
2012-07-09 12:23:53 +00:00
assert.string(name, 'name');
assert.string(attr, 'attr');
assert.string(value, 'value');
if (typeof (controls) === 'function') {
2011-08-04 20:32:01 +00:00
callback = controls;
controls = [];
} else {
2012-01-24 17:43:46 +00:00
controls = validateControls(controls);
2011-08-04 20:32:01 +00:00
}
2012-07-09 12:23:53 +00:00
assert.func(callback, 'callback');
2011-08-04 20:32:01 +00:00
var req = new CompareRequest({
entry: dn.parse(name),
attribute: attr,
2011-08-04 20:32:01 +00:00
value: value,
controls: controls
});
2012-02-24 00:02:52 +00:00
return this._send(req, CMP_EXPECT, null, function (err, res) {
2011-08-04 20:32:01 +00:00
if (err)
return callback(err);
return callback(null, (res.status === errors.LDAP_COMPARE_TRUE), res);
});
2011-08-04 20:32:01 +00:00
};
/**
* Deletes an entry from the LDAP server.
*
* @param {String} name the DN of the entry to delete.
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err, res).
* @throws {TypeError} on invalid input.
*/
Client.prototype.del = function del(name, controls, callback) {
2012-07-09 12:23:53 +00:00
assert.string(name, 'name');
if (typeof (controls) === 'function') {
2011-08-04 20:32:01 +00:00
callback = controls;
controls = [];
} else {
2012-01-24 17:43:46 +00:00
controls = validateControls(controls);
2011-08-04 20:32:01 +00:00
}
2012-07-09 12:23:53 +00:00
assert.func(callback, 'callback');
2011-08-04 20:32:01 +00:00
var req = new DeleteRequest({
entry: dn.parse(name),
controls: controls
});
return this._send(req, [errors.LDAP_SUCCESS], null, callback);
2011-08-04 20:32:01 +00:00
};
/**
* Performs an extended operation on the LDAP server.
*
* Pretty much none of the LDAP extended operations return an OID
* (responseName), so I just don't bother giving it back in the callback.
* It's on the third param in `res` if you need it.
*
* @param {String} name the OID of the extended operation to perform.
* @param {String} value value to pass in for this operation.
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err, value, res).
* @throws {TypeError} on invalid input.
*/
Client.prototype.exop = function exop(name, value, controls, callback) {
2012-07-09 12:23:53 +00:00
assert.string(name, 'name');
if (typeof (value) === 'function') {
2011-08-04 20:32:01 +00:00
callback = value;
controls = [];
value = '';
}
if (!(Buffer.isBuffer(value) || typeof (value) === 'string'))
throw new TypeError('value (Buffer || string) required');
if (typeof (controls) === 'function') {
2011-08-04 20:32:01 +00:00
callback = controls;
controls = [];
} else {
2012-01-24 17:43:46 +00:00
controls = validateControls(controls);
2011-08-04 20:32:01 +00:00
}
2012-07-09 12:23:53 +00:00
assert.func(callback, 'callback');
2011-08-04 20:32:01 +00:00
var req = new ExtendedRequest({
requestName: name,
requestValue: value,
controls: controls
});
2012-02-24 00:02:52 +00:00
return this._send(req, [errors.LDAP_SUCCESS], null, function (err, res) {
2011-08-04 20:32:01 +00:00
if (err)
return callback(err);
return callback(null, res.responseValue || '', res);
});
2011-08-04 20:32:01 +00:00
};
/**
* Performs an LDAP modify against the server.
*
* @param {String} name the DN of the entry to modify.
* @param {Change} change update to perform (can be [Change]).
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err, res).
* @throws {TypeError} on invalid input.
*/
Client.prototype.modify = function modify(name, change, controls, callback) {
2012-07-09 12:23:53 +00:00
assert.string(name, 'name');
assert.object(change, 'change');
var changes = [];
function changeFromObject(change) {
if (!change.operation && !change.type)
throw new Error('change.operation required');
if (typeof (change.modification) !== 'object')
throw new Error('change.modification (object) required');
2012-02-24 00:02:52 +00:00
Object.keys(change.modification).forEach(function (k) {
var mod = {};
mod[k] = change.modification[k];
changes.push(new Change({
operation: change.operation || change.type,
modification: mod
}));
});
2011-08-04 20:32:01 +00:00
}
if (change instanceof Change) {
changes.push(change);
} else if (Array.isArray(change)) {
2012-02-24 00:02:52 +00:00
change.forEach(function (c) {
if (c instanceof Change) {
changes.push(c);
} else {
changeFromObject(c);
}
});
} else {
changeFromObject(change);
}
if (typeof (controls) === 'function') {
2011-08-04 20:32:01 +00:00
callback = controls;
controls = [];
} else {
2012-01-24 17:43:46 +00:00
controls = validateControls(controls);
2011-08-04 20:32:01 +00:00
}
2012-07-09 12:23:53 +00:00
assert.func(callback, 'callback');
2011-08-04 20:32:01 +00:00
var req = new ModifyRequest({
object: dn.parse(name),
changes: changes,
2011-08-04 20:32:01 +00:00
controls: controls
});
return this._send(req, [errors.LDAP_SUCCESS], null, callback);
2011-08-04 20:32:01 +00:00
};
/**
* Performs an LDAP modifyDN against the server.
*
* This does not allow you to keep the old DN, as while the LDAP protocol
* has a facility for that, it's stupid. Just Search/Add.
*
* This will automatically deal with "new superior" logic.
*
* @param {String} name the DN of the entry to modify.
* @param {String} newName the new DN to move this entry to.
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err, res).
* @throws {TypeError} on invalid input.
*/
Client.prototype.modifyDN = function modifyDN(name,
newName,
controls,
callback) {
if (typeof (name) !== 'string')
2011-08-04 20:32:01 +00:00
throw new TypeError('name (string) required');
if (typeof (newName) !== 'string')
2011-08-04 20:32:01 +00:00
throw new TypeError('newName (string) required');
if (typeof (controls) === 'function') {
2011-08-04 20:32:01 +00:00
callback = controls;
controls = [];
} else {
2012-01-24 17:43:46 +00:00
controls = validateControls(controls);
2011-08-04 20:32:01 +00:00
}
if (typeof (callback) !== 'function')
2011-08-04 20:32:01 +00:00
throw new TypeError('callback (function) required');
var DN = dn.parse(name);
var newDN = dn.parse(newName);
var req = new ModifyDNRequest({
entry: DN,
deleteOldRdn: true,
controls: controls
});
if (newDN.length !== 1) {
req.newRdn = dn.parse(newDN.rdns.shift().toString());
req.newSuperior = newDN;
} else {
req.newRdn = newDN;
}
return this._send(req, [errors.LDAP_SUCCESS], null, callback);
2011-08-04 20:32:01 +00:00
};
/**
* Performs an LDAP search against the server.
*
* Note that the defaults for options are a 'base' search, if that's what
* you want you can just pass in a string for options and it will be treated
* as the search filter. Also, you can either pass in programatic Filter
* objects or a filter string as the filter option.
*
* Note that this method is 'special' in that the callback 'res' param will
* have two important events on it, namely 'entry' and 'end' that you can hook
* to. The former will emit a SearchEntry object for each record that comes
* back, and the latter will emit a normal LDAPResult object.
*
* @param {String} base the DN in the tree to start searching at.
* @param {Object} options parameters:
* - {String} scope default of 'base'.
* - {String} filter default of '(objectclass=*)'.
* - {Array} attributes [string] to return.
* - {Boolean} attrsOnly whether to return values.
* @param {Control} controls (optional) either a Control or [Control].
* @param {Function} callback of the form f(err, res).
* @throws {TypeError} on invalid input.
*/
Client.prototype.search = function search(base,
options,
controls,
callback,
_bypass) {
if (typeof (base) !== 'string' && !(base instanceof dn.DN))
2011-08-04 20:32:01 +00:00
throw new TypeError('base (string) required');
if (Array.isArray(options) || (options instanceof Control)) {
controls = options;
options = {};
} else if (typeof (options) === 'function') {
2011-08-04 20:32:01 +00:00
callback = options;
controls = [];
options = {
filter: new PresenceFilter({attribute: 'objectclass'})
};
} else if (typeof (options) === 'string') {
2011-08-04 20:32:01 +00:00
options = {filter: filters.parseString(options)};
} else if (typeof (options) !== 'object') {
2011-08-04 20:32:01 +00:00
throw new TypeError('options (object) required');
}
if (typeof (options.filter) === 'string') {
options.filter = filters.parseString(options.filter);
} else if (!options.filter) {
options.filter = new PresenceFilter({attribute: 'objectclass'});
} else if (!(options.filter instanceof Filter)) {
2011-08-04 20:32:01 +00:00
throw new TypeError('options.filter (Filter) required');
}
if (typeof (controls) === 'function') {
2011-08-04 20:32:01 +00:00
callback = controls;
controls = [];
} else {
2011-09-16 16:06:07 +00:00
controls = validateControls(controls);
2011-08-04 20:32:01 +00:00
}
if (typeof (callback) !== 'function')
2011-08-04 20:32:01 +00:00
throw new TypeError('callback (function) required');
if (options.attributes) {
if (!Array.isArray(options.attributes)) {
if (typeof (options.attributes) === 'string') {
options.attributes = [options.attributes];
} else {
throw new TypeError('options.attributes must be an Array of Strings');
}
}
}
2011-08-04 20:32:01 +00:00
var req = new SearchRequest({
baseObject: typeof (base) === 'string' ? dn.parse(base) : base,
2011-08-04 20:32:01 +00:00
scope: options.scope || 'base',
filter: options.filter,
derefAliases: options.derefAliases || Protocol.NEVER_DEREF_ALIASES,
2011-08-04 20:32:01 +00:00
sizeLimit: options.sizeLimit || 0,
timeLimit: options.timeLimit || 10,
typesOnly: options.typesOnly || false,
2011-09-16 16:06:07 +00:00
attributes: options.attributes || [],
controls: controls
2011-08-04 20:32:01 +00:00
});
return this._send(req,
[errors.LDAP_SUCCESS],
new EventEmitter(),
callback,
_bypass);
2011-08-04 20:32:01 +00:00
};
/**
* Unbinds this client from the LDAP server.
*
* Note that unbind does not have a response, so this callback is actually
* optional; either way, the client is disconnected.
*
* @param {Function} callback of the form f(err).
* @throws {TypeError} if you pass in callback as not a function.
*/
Client.prototype.unbind = function unbind(callback) {
2011-08-04 20:32:01 +00:00
if (!callback)
2012-02-24 00:02:52 +00:00
callback = function () {};
2011-08-04 20:32:01 +00:00
if (typeof (callback) !== 'function')
throw new TypeError('callback must be a function');
2011-09-26 23:45:49 +00:00
if (!this.socket)
2011-11-09 22:55:13 +00:00
return callback();
2011-08-04 20:32:01 +00:00
var req = new UnbindRequest();
if (this.socket.listeners('error').length === 0) {
this.socket.once('error', function () {});
}
return this._send(req, 'unbind', null, callback);
2011-08-04 20:32:01 +00:00
};
/**
* Disconnect from the LDAP server and do not allow reconnection.
*
* If the client is instantiated with proper reconnection options, it's
* possible to initiate new requests after a call to unbind since the client
* will attempt to reconnect in order to fulfill the request.
*
* Calling destroy will prevent any further reconnections from occuring.
*/
Client.prototype.destroy = function destroy() {
this.destroyed = true;
if (this._queue) {
// Purge any queued requests which are now meaningless
this._queue.flush(function (msg, expect, emitter, cb) {
if (typeof (cb) === 'function') {
cb(new Error('client destroyed'));
}
});
}
this.unbind();
};
///--- Private API
/**
* Initiate LDAP connection.
*/
Client.prototype._connect = function _connect() {
if (this.connecting) {
return;
}
2011-08-04 20:32:01 +00:00
var self = this;
var log = this.log;
var socket;
2012-01-24 17:43:46 +00:00
// Establish basic socket connection
function connectSocket(_, cb) {
cb = once(cb);
function onResult(err, res) {
if (err) {
if (self.connectTimer) {
clearTimeout(self.connectTimer);
self.connectTimer = null;
}
self.emit('connectError', err);
}
cb(err, res);
}
function onConnect() {
if (self.connectTimer) {
clearTimeout(self.connectTimer);
self.connectTimer = null;
}
socket.removeAllListeners('error')
.removeAllListeners('connect')
.removeAllListeners('secureConnect');
socket.ldap.id = nextClientId() + '__' + socket.ldap.id;
self.log = self.log.child({ldap_id: socket.ldap.id}, true);
// Move on to client setup
setupClient(cb);
}
var port = (self.port || self.socketPath);
if (self.secure) {
socket = tls.connect(port, self.host, self.tlsOptions);
socket.once('secureConnect', onConnect);
} else {
socket = net.connect(port, self.host);
socket.once('connect', onConnect);
}
socket.once('error', onResult);
initSocket();
// Setup connection timeout handling, if desired
if (self.connectTimeout) {
self.connectTimer = setTimeout(function onConnectTimeout() {
if (!socket || !socket.readable || !socket.writeable) {
socket.destroy();
self.socket = null;
onResult(new ConnectionError('connection timeout'));
}
}, self.connectTimeout);
}
}
// Initialize socket events and LDAP parser.
function initSocket() {
socket.ldap = {
id: self.url ? self.url.href : self.socketPath,
messageID: 0,
messages: {},
getNextMessageID: function getNextMessageID() {
if (++socket.ldap.messageID >= MAX_MSGID)
socket.ldap.messageID = 1;
return socket.ldap.messageID;
},
parser: new Parser({
log: log
})
};
// This won't be set on TLS. So. Very. Annoying.
if (typeof (socket.setKeepAlive) !== 'function') {
socket.setKeepAlive = function setKeepAlive(enable, delay) {
return socket.socket ?
socket.socket.setKeepAlive(enable, delay) : false;
};
}
socket.on('data', function onData(data) {
if (log.trace())
log.trace('data event: %s', util.inspect(data));
socket.ldap.parser.write(data);
});
// The "router"
socket.ldap.parser.on('message', function onMessage(message) {
message.connection = socket;
var callback = socket.ldap.messages[message.messageID];
if (!callback) {
log.error({message: message.json}, 'unsolicited message');
return false;
}
return callback(message);
});
socket.ldap.parser.on('error', function onParseError(err) {
log.trace({err: err}, 'parser error event');
self.emit('error', err);
self.connected = false;
socket.end();
});
}
// After connect, register socket event handlers and run any setup actions
function setupClient(cb) {
cb = once(cb);
// Indicate failure if anything goes awry during setup
function bail(err) {
socket.destroy();
cb(err || new Error('client error during setup'));
}
// Work around lack of close event on tls.socket
((self.secure) ? socket.socket : socket).once('close', bail);
socket.once('error', bail);
socket.once('end', bail);
socket.once('timeout', bail);
self.socket = socket;
// Run any requested setup (such as automatically performing a bind) on
// socket before signalling successful connection.
// This setup needs to bypass the request queue since all other activity is
// blocked until the connection is considered fully established post-setup.
// Only allow bind/search for now.
var basicClient = {
bind: function bindBypass(name, credentials, controls, callback) {
return self.bind(name, credentials, controls, callback, true);
},
search: function searchBypass(base, options, controls, callback) {
return self.search(base, options, controls, callback, true);
},
unbind: self.unbind.bind(self)
};
var setupSteps = self.listeners('setup');
if (setupSteps.length) {
vasync.forEachPipeline({
func: function (f, callback) {
f(basicClient, callback);
},
inputs: setupSteps
}, function (err, result) {
cb(err, socket);
});
} else {
cb(null, socket);
}
2012-07-10 22:40:34 +00:00
}
// Wire up "official" event handlers after successful connect/setup
function postSetup() {
socket.removeAllListeners('error')
.removeAllListeners('close')
.removeAllListeners('end')
.removeAllListeners('timeout');
// Work around lack of close event on tls.socket
((self.secure) ? socket.socket : socket).once('close',
self._onClose.bind(self));
socket.on('end', function onEnd() {
if (log.trace())
log.trace('end event');
self.emit('end');
socket.end();
});
socket.on('error', function onSocketError(err) {
if (log.trace())
log.trace({err: err}, 'error event: %s', new Error().stack);
self.emit('error', err);
socket.destroy();
});
socket.on('timeout', function onTimeout() {
if (log.trace())
log.trace('timeout event');
2011-08-04 20:32:01 +00:00
self.emit('socketTimeout');
socket.end();
});
}
var retry = backoff.call(connectSocket, {}, function (err, res) {
self.connecting = false;
if (!err) {
postSetup();
self.connected = true;
self.emit('connect', socket);
self.log.debug('connected after %d attempts', retry.getNumRetries());
// Flush any queued requests
self._flushQueue();
} else {
self.log.debug('failed to connect after %d attempts',
retry.getNumRetries());
// Communicate the last-encountered error
if (err instanceof ConnectionError) {
self.emit('connectTimeout');
} else {
self.emit('error', err);
}
}
});
if (this.reconnect) {
retry.setStrategy(new backoff.ExponentialStrategy({
initialDelay: this.reconnect.minDelay,
maxDelay: this.reconnect.maxDelay
}));
retry.failAfter(this.reconnect.failAfter || Infinity);
} else {
// Only attempt the connection once for non-reconnection clients
retry.failAfter(1);
}
this.connecting = true;
retry.start();
};
2011-09-26 23:45:49 +00:00
/**
* Flush queued requests out to the socket.
*/
Client.prototype._flushQueue = function _flushQueue() {
if (this._queue) {
// Pull items we're about to process out of the queue.
this._queue.flush(this._send.bind(this));
}
};
/**
* Clean up socket/parser resources after socket close.
*/
Client.prototype._onClose = function _onClose(had_err) {
var socket = this.socket;
socket.removeAllListeners('connect')
.removeAllListeners('data')
.removeAllListeners('drain')
.removeAllListeners('end')
.removeAllListeners('error')
.removeAllListeners('timeout');
this.socket = null;
this.connected = false;
if (!this.secure) {
socket.removeAllListeners('close');
} else {
socket.socket.removeAllListeners('close');
}
if (this.log.trace())
this.log.trace('close event had_err=%s', had_err ? 'yes' : 'no');
this.emit('close', had_err);
// On close we have to walk the outstanding messages and go invoke their
// callback with an error.
Object.keys(socket.ldap.messages).forEach(function (msgid) {
var err;
if (socket.unbindMessageID !== parseInt(msgid, 10)) {
err = new ConnectionError(socket.ldap.id + ' closed');
} else {
// Unbinds will be communicated as a success since we're closed
err = new UnbindResponse({
messageID: msgid
});
err.status = 'unbind';
}
if (typeof (socket.ldap.messages[msgid]) === 'function') {
var callback = socket.ldap.messages[msgid];
delete socket.ldap.messages[msgid];
return callback(err);
} else if (socket.ldap.messages[msgid]) {
if (err instanceof Error)
socket.ldap.messages[msgid].emit('error', err);
delete socket.ldap.messages[msgid];
}
return false;
});
delete socket.ldap.parser;
delete socket.ldap;
if (had_err && this.reconnect) {
this._connect();
}
return false;
};
/**
* Maintain idle timer for client.
*
* Will start timer to fire 'idle' event if conditions are satisfied. If
* conditions are not met and a timer is running, it will be cleared.
*
* @param {Boolean} override explicitly disable timer.
*/
Client.prototype._updateIdle = function _updateIdle(override) {
if (this.idleTimeout === 0) {
return;
}
// Client must be connected but not waiting on any request data
var self = this;
function isIdle(disable) {
// FIXME: this breaks with abandons
return ((disable !== true) &&
(self.socket && self.connected) &&
(Object.keys(self.socket.ldap.messages).length === 0));
}
if (isIdle(override)) {
if (!this._idleTimer) {
this._idleTimer = setTimeout(function () {
// Double-check idleness in case socket was torn down
if (isIdle()) {
self.emit('idle');
}
}, this.idleTimeout);
}
} else {
if (this._idleTimer) {
clearTimeout(this._idleTimer);
this._idleTimer = null;
}
}
};
/**
* Attempt to send an LDAP request.
*/
Client.prototype._send = function _send(message,
expect,
emitter,
callback,
_bypass) {
assert.ok(message);
assert.ok(expect);
assert.ok(typeof (emitter) !== undefined);
assert.ok(callback);
// Allow connect setup traffic to bypass checks
if (_bypass && this.socket && this.socket.writable) {
return this._sendSocket(message, expect, emitter, callback);
}
if (!this.socket || !this.connected) {
if (this._queue) {
if (!this._queue.queue(message, expect, emitter, callback)) {
callback(new Error('request queue full'));
}
// Initiate reconnect if needed
return this._connect();
}
return callback(new ConnectionError('no socket'));
} else {
this._flushQueue();
return this._sendSocket(message, expect, emitter, callback);
}
};
Client.prototype._sendSocket = function _sendSocket(message,
expect,
emitter,
callback) {
var conn = this.socket;
var log = this.log;
var self = this;
var timer = false;
var sentEmitter = false;
function _done(event, obj) {
2012-07-09 12:23:53 +00:00
if (emitter) {
if (event === 'error') {
// Error will go unhandled if emitter hasn't been sent via callback.
// Execute callback with the error instead.
if (!sentEmitter)
return callback(obj);
2012-07-09 12:23:53 +00:00
emitter.removeAllListeners('end');
}
2012-07-09 12:23:53 +00:00
if (event === 'end')
emitter.removeAllListeners('error');
return emitter.emit(event, obj);
2012-07-09 12:23:53 +00:00
}
if (event === 'error')
return callback(obj);
return callback(null, obj);
} // end function _done(event, obj)
function _continuePagedSearch(msg) {
// this function looks for a paged control in the response msg
// and continue searching or not according to RFC 2696:
// http://www.ietf.org/rfc/rfc2696.txt
if (Array.isArray(msg.controls) && msg.controls.length > 0) {
log.trace('message has %d controls', msg.controls.length);
for (var i = 0; i < msg.controls.length; i++) {
var resControl = msg.controls[i];
// check paged control in response
if (resControl instanceof PagedResultsControl) {
log.debug('paged search: end of page');
if (resControl.value.cookie && resControl.value.cookie.length > 0) {
log.trace('paged search: received cookie in response');
if (Array.isArray(message.controls) &&
message.controls.length > 0) {
for (var j = 0; j < message.controls.length; j++) {
var reqControl = message.controls[j];
if (reqControl instanceof PagedResultsControl) {
// update request cookie and re-send
reqControl.value.cookie = resControl.value.cookie;
try {
log.debug('paged search: continuing');
conn.write(message.toBer());
return true;
} catch (e) {
if (timer)
clearTimeout(timer);
log.trace({err: e}, 'Error writing message to socket');
callback(e);
return false;
}
}
}
}
} else {
log.debug('paged search done');
}
}
}
}
// not a paged search or all pages received
return false;
} // end function _continuePagedSearch(msg)
function messageCallback(msg) {
if (timer)
clearTimeout(timer);
2012-04-27 03:47:03 +00:00
if (log.trace())
log.trace({msg: msg ? msg.json : null}, 'response received');
if (expect === 'abandon')
return _done('end', null);
if (msg instanceof SearchEntry || msg instanceof SearchReference) {
var event = msg.constructor.name;
event = event[0].toLowerCase() + event.slice(1);
return _done(event, msg);
} else if (_continuePagedSearch(msg)) {
// page search continued, just return for now
return undefined;
} else {
delete conn.ldap.messages[message.messageID];
// Potentially mark client as idle
self._updateIdle();
if (msg instanceof LDAPResult) {
if (expect.indexOf(msg.status) === -1)
return _done('error', errors.getError(msg));
return _done('end', msg);
} else if (msg instanceof Error) {
return _done('error', msg);
} else {
return _done('error', new errors.ProtocolError(msg.type));
}
}
} // end function messageCallback(msg)
function onRequestTimeout() {
self.emit('timeout', message);
if (conn.ldap.messages[message.messageID]) {
conn.ldap.messages[message.messageID](new LDAPResult({
status: 80, // LDAP_OTHER
errorMessage: 'request timeout (client interrupt)'
}));
}
} // end function onRequestTimeout()
function writeCallback() {
if (expect === 'abandon') {
return callback(null);
} else if (expect === 'unbind') {
conn.unbindMessageID = message.id;
// Mark client as disconnected once unbind clears the socket
self.connected = false;
conn.end();
} else if (emitter) {
sentEmitter = true;
return callback(null, emitter);
}
return false;
} // end writeCallback()
// Start actually doing something...
message.messageID = conn.ldap.getNextMessageID();
conn.ldap.messages[message.messageID] = messageCallback;
// Mark client as active
this._updateIdle(true);
if (self.timeout) {
2012-04-27 03:47:03 +00:00
log.trace('Setting timeout to %d', self.timeout);
timer = setTimeout(onRequestTimeout, self.timeout);
}
2012-04-27 03:47:03 +00:00
if (log.trace())
log.trace('sending request %j', message.json);
try {
return conn.write(message.toBer(), writeCallback);
} catch (e) {
if (timer)
clearTimeout(timer);
2012-04-27 03:47:03 +00:00
log.trace({err: e}, 'Error writing message to socket');
return callback(e);
}
};