2011-08-04 20:32:01 +00:00
|
|
|
// Copyright 2011 Mark Cavage, Inc. All rights reserved.
|
|
|
|
|
|
|
|
var assert = require('assert');
|
|
|
|
var EventEmitter = require('events').EventEmitter;
|
|
|
|
var net = require('net');
|
|
|
|
var tls = require('tls');
|
|
|
|
var util = require('util');
|
|
|
|
|
|
|
|
var Attribute = require('./attribute');
|
|
|
|
var Change = require('./change');
|
|
|
|
var Control = require('./control');
|
|
|
|
var Protocol = require('./protocol');
|
|
|
|
var dn = require('./dn');
|
|
|
|
var errors = require('./errors');
|
|
|
|
var filters = require('./filters');
|
|
|
|
var logStub = require('./log_stub');
|
|
|
|
var messages = require('./messages');
|
|
|
|
var url = require('./url');
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
///--- Globals
|
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
var AbandonRequest = messages.AbandonRequest;
|
2011-08-04 20:32:01 +00:00
|
|
|
var AddRequest = messages.AddRequest;
|
|
|
|
var BindRequest = messages.BindRequest;
|
|
|
|
var CompareRequest = messages.CompareRequest;
|
|
|
|
var DeleteRequest = messages.DeleteRequest;
|
|
|
|
var ExtendedRequest = messages.ExtendedRequest;
|
|
|
|
var ModifyRequest = messages.ModifyRequest;
|
|
|
|
var ModifyDNRequest = messages.ModifyDNRequest;
|
|
|
|
var SearchRequest = messages.SearchRequest;
|
|
|
|
var UnbindRequest = messages.UnbindRequest;
|
2011-11-08 21:10:39 +00:00
|
|
|
var UnbindResponse = messages.UnbindResponse;
|
2011-08-04 20:32:01 +00:00
|
|
|
|
|
|
|
var LDAPResult = messages.LDAPResult;
|
|
|
|
var SearchEntry = messages.SearchEntry;
|
2011-09-27 18:49:33 +00:00
|
|
|
var SearchReference = messages.SearchReference;
|
2011-08-04 20:32:01 +00:00
|
|
|
var SearchResponse = messages.SearchResponse;
|
|
|
|
var Parser = messages.Parser;
|
|
|
|
|
|
|
|
|
|
|
|
var Filter = filters.Filter;
|
|
|
|
var PresenceFilter = filters.PresenceFilter;
|
|
|
|
|
|
|
|
|
|
|
|
var MAX_MSGID = Math.pow(2, 31) - 1;
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
///--- Internal Helpers
|
|
|
|
|
|
|
|
function xor() {
|
|
|
|
var b = false;
|
|
|
|
for (var i = 0; i < arguments.length; i++) {
|
|
|
|
if (arguments[i] && !b) b = true;
|
|
|
|
else if (arguments[i] && b) return false;
|
|
|
|
}
|
|
|
|
return b;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
function validateControls(controls) {
|
|
|
|
if (Array.isArray(controls)) {
|
|
|
|
controls.forEach(function(c) {
|
|
|
|
if (!(c instanceof Control))
|
|
|
|
throw new TypeError('controls must be [Control]');
|
|
|
|
});
|
|
|
|
} else if (controls instanceof Control) {
|
|
|
|
controls = [controls];
|
|
|
|
} else {
|
|
|
|
throw new TypeError('controls must be [Control]');
|
|
|
|
}
|
|
|
|
|
|
|
|
return controls;
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
function ConnectionError(message) {
|
|
|
|
errors.LDAPError.call(this,
|
|
|
|
'ConnectionError',
|
|
|
|
0x80, // LDAP_OTHER,
|
|
|
|
message,
|
|
|
|
null,
|
|
|
|
ConnectionError);
|
2011-08-04 20:32:01 +00:00
|
|
|
}
|
2011-09-26 23:45:49 +00:00
|
|
|
util.inherits(ConnectionError, errors.LDAPError);
|
|
|
|
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
|
|
|
|
///--- API
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Constructs a new client.
|
|
|
|
*
|
|
|
|
* The options object is required, and must contain either a URL (string) or
|
|
|
|
* a socketPath (string); the socketPath is only if you want to talk to an LDAP
|
|
|
|
* server over a Unix Domain Socket. Additionally, you can pass in a log4js
|
|
|
|
* option that is the result of `require('log4js')`, presumably after you've
|
|
|
|
* configured it.
|
|
|
|
*
|
|
|
|
* @param {Object} options must have either url or socketPath.
|
|
|
|
* @throws {TypeError} on bad input.
|
|
|
|
*/
|
|
|
|
function Client(options) {
|
|
|
|
if (!options || typeof(options) !== 'object')
|
|
|
|
throw new TypeError('options (object) required');
|
|
|
|
if (options.url && typeof(options.url) !== 'string')
|
|
|
|
throw new TypeError('options.url (string) required');
|
|
|
|
if (options.socketPath && typeof(options.socketPath) !== 'string')
|
|
|
|
throw new TypeError('options.socketPath must be a string');
|
|
|
|
if (options.log4js && typeof(options.log4js) !== 'object')
|
|
|
|
throw new TypeError('options.log4s must be an object');
|
2011-09-02 13:29:33 +00:00
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
if (!xor(options.url, options.socketPath))
|
|
|
|
throw new TypeError('options.url ^ options.socketPath required');
|
|
|
|
|
|
|
|
EventEmitter.call(this, options);
|
|
|
|
|
|
|
|
var self = this;
|
|
|
|
this.secure = false;
|
|
|
|
if (options.url) {
|
|
|
|
this.url = url.parse(options.url);
|
|
|
|
this.secure = this.url.secure;
|
|
|
|
}
|
|
|
|
|
|
|
|
this.log4js = options.log4js || logStub;
|
2011-08-26 23:33:49 +00:00
|
|
|
this.connectOptions = {
|
|
|
|
port: self.url ? self.url.port : options.socketPath,
|
2011-09-26 23:45:49 +00:00
|
|
|
host: self.url ? self.url.hostname : undefined,
|
|
|
|
socketPath: options.socketPath || undefined
|
2011-08-04 20:32:01 +00:00
|
|
|
};
|
|
|
|
this.shutdown = false;
|
|
|
|
|
|
|
|
this.__defineGetter__('log', function() {
|
|
|
|
if (!self._log)
|
2011-08-19 22:08:23 +00:00
|
|
|
self._log = self.log4js.getLogger('Client');
|
2011-08-04 20:32:01 +00:00
|
|
|
|
|
|
|
return self._log;
|
|
|
|
});
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
this.reconnect = (typeof(options.reconnect) === 'number' ?
|
|
|
|
options.reconnect : 1000);
|
2011-11-08 21:10:39 +00:00
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
this.connection = null;
|
2011-11-08 21:10:39 +00:00
|
|
|
this.connect();
|
2011-08-04 20:32:01 +00:00
|
|
|
}
|
|
|
|
util.inherits(Client, EventEmitter);
|
|
|
|
module.exports = Client;
|
|
|
|
|
|
|
|
|
2011-11-08 21:10:39 +00:00
|
|
|
/**
|
|
|
|
* Connects this client, either at construct time, or after an unbind has
|
|
|
|
* been called. Under normal circumstances you don't need to call this method.
|
|
|
|
*
|
2011-11-09 22:44:12 +00:00
|
|
|
* @param {Function} callback invoked when `connect()` is done.
|
2011-11-08 21:10:39 +00:00
|
|
|
*/
|
2011-11-09 22:44:12 +00:00
|
|
|
Client.prototype.connect = function(callback) {
|
2011-11-08 21:10:39 +00:00
|
|
|
if (this.connection)
|
|
|
|
return;
|
|
|
|
|
|
|
|
var self = this;
|
2011-11-09 22:44:12 +00:00
|
|
|
var connection = this.connection = this._newConnection();
|
|
|
|
|
|
|
|
function reconnect() {
|
|
|
|
self.connection = null;
|
|
|
|
|
|
|
|
if (self.reconnect)
|
|
|
|
setTimeout(function() { self.connect(); }, self.reconnect);
|
|
|
|
}
|
|
|
|
|
|
|
|
this.connection.on('close', function(had_err) {
|
|
|
|
self.emit('close', had_err);
|
|
|
|
reconnect();
|
|
|
|
});
|
|
|
|
|
|
|
|
this.connection.on('connect', function() {
|
|
|
|
if (self._bindDN && self._credentials)
|
|
|
|
return self.bind(self._bindDN, self._credentials, function(err) {
|
|
|
|
if (err)
|
|
|
|
c.end();
|
|
|
|
|
|
|
|
self.emit('connect')
|
|
|
|
});
|
|
|
|
|
|
|
|
self.emit('connect')
|
2011-11-08 21:10:39 +00:00
|
|
|
});
|
|
|
|
};
|
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
/**
|
|
|
|
* Performs a simple authentication against the server.
|
|
|
|
*
|
|
|
|
* @param {String} name the DN to bind as.
|
|
|
|
* @param {String} credentials the userPassword associated with name.
|
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err, res).
|
2011-09-26 23:45:49 +00:00
|
|
|
* @param {Socket} conn don't use this. Internal only (reconnects).
|
2011-08-04 20:32:01 +00:00
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
2011-09-26 23:45:49 +00:00
|
|
|
Client.prototype.bind = function(name, credentials, controls, callback, conn) {
|
2011-10-18 19:31:52 +00:00
|
|
|
if (typeof(name) !== 'string' && !(name instanceof dn.DN))
|
2011-08-04 20:32:01 +00:00
|
|
|
throw new TypeError('name (string) required');
|
|
|
|
if (typeof(credentials) !== 'string')
|
|
|
|
throw new TypeError('credentials (string) required');
|
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
|
|
|
control = validateControls(controls);
|
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
2011-11-09 22:55:13 +00:00
|
|
|
this.connect();
|
2011-08-04 20:32:01 +00:00
|
|
|
var self = this;
|
|
|
|
|
|
|
|
var req = new BindRequest({
|
2011-11-09 22:57:22 +00:00
|
|
|
name: name,
|
2011-08-04 20:32:01 +00:00
|
|
|
authentication: 'Simple',
|
|
|
|
credentials: credentials,
|
|
|
|
controls: controls
|
|
|
|
});
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
return self._send(req, [errors.LDAP_SUCCESS], function(err, res) {
|
|
|
|
if (!err) { // In case we need to reconnect later
|
|
|
|
self._bindDN = name;
|
|
|
|
self._credentials = credentials;
|
|
|
|
}
|
|
|
|
|
|
|
|
return callback(err, res);
|
|
|
|
}, conn);
|
2011-08-04 20:32:01 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
/**
|
|
|
|
* Sends an abandon request to the LDAP server.
|
|
|
|
*
|
|
|
|
* The callback will be invoked as soon as the data is flushed out to the
|
|
|
|
* network, as there is never a response from abandon.
|
|
|
|
*
|
|
|
|
* @param {Number} messageID the messageID to abandon.
|
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err).
|
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
|
|
|
Client.prototype.abandon = function(messageID, controls, callback) {
|
|
|
|
if (typeof(messageID) !== 'number')
|
|
|
|
throw new TypeError('messageID (number) required');
|
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
|
|
|
control = validateControls(controls);
|
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
|
|
|
var req = new AbandonRequest({
|
|
|
|
abandonID: messageID,
|
|
|
|
controls: controls
|
|
|
|
});
|
|
|
|
|
|
|
|
return this._send(req, 'abandon', callback);
|
|
|
|
};
|
|
|
|
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
/**
|
|
|
|
* Adds an entry to the LDAP server.
|
|
|
|
*
|
2011-08-04 21:25:12 +00:00
|
|
|
* Entry can be either [Attribute] or a plain JS object where the
|
|
|
|
* values are either a plain value or an array of values. Any value (that's
|
|
|
|
* not an array) will get converted to a string, so keep that in mind.
|
|
|
|
*
|
2011-08-04 20:32:01 +00:00
|
|
|
* @param {String} name the DN of the entry to add.
|
2011-08-04 21:25:12 +00:00
|
|
|
* @param {Object} entry an array of Attributes to be added or a JS object.
|
2011-08-04 20:32:01 +00:00
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err, res).
|
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
2011-08-04 21:25:12 +00:00
|
|
|
Client.prototype.add = function(name, entry, controls, callback) {
|
2011-08-04 20:32:01 +00:00
|
|
|
if (typeof(name) !== 'string')
|
|
|
|
throw new TypeError('name (string) required');
|
2011-08-04 21:25:12 +00:00
|
|
|
if (typeof(entry) !== 'object')
|
|
|
|
throw new TypeError('entry (object) required');
|
2011-08-04 20:32:01 +00:00
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
|
|
|
control = validateControls(controls);
|
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
2011-08-04 21:25:12 +00:00
|
|
|
if (Array.isArray(entry)) {
|
|
|
|
entry.forEach(function(a) {
|
|
|
|
if (!Attribute.isAttribute(a))
|
|
|
|
throw new TypeError('entry must be an Array of Attributes');
|
|
|
|
});
|
|
|
|
} else {
|
|
|
|
var save = entry;
|
|
|
|
|
|
|
|
entry = [];
|
|
|
|
Object.keys(save).forEach(function(k) {
|
|
|
|
var attr = new Attribute({type: k});
|
|
|
|
if (Array.isArray(save[k])) {
|
|
|
|
save[k].forEach(function(v) {
|
|
|
|
attr.addValue(v.toString());
|
|
|
|
});
|
|
|
|
} else {
|
|
|
|
attr.addValue(save[k].toString());
|
|
|
|
}
|
|
|
|
entry.push(attr);
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
var req = new AddRequest({
|
|
|
|
entry: dn.parse(name),
|
2011-08-04 21:25:12 +00:00
|
|
|
attributes: entry,
|
2011-08-04 20:32:01 +00:00
|
|
|
controls: controls
|
|
|
|
});
|
|
|
|
|
|
|
|
return this._send(req, [errors.LDAP_SUCCESS], callback);
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Compares an attribute/value pair with an entry on the LDAP server.
|
|
|
|
*
|
|
|
|
* @param {String} name the DN of the entry to compare attributes with.
|
2011-08-04 21:25:12 +00:00
|
|
|
* @param {String} attr name of an attribute to check.
|
2011-08-04 20:32:01 +00:00
|
|
|
* @param {String} value value of an attribute to check.
|
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err, boolean, res).
|
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
2011-08-04 21:25:12 +00:00
|
|
|
Client.prototype.compare = function(name, attr, value, controls, callback) {
|
2011-08-04 20:32:01 +00:00
|
|
|
if (typeof(name) !== 'string')
|
|
|
|
throw new TypeError('name (string) required');
|
2011-08-04 21:25:12 +00:00
|
|
|
if (typeof(attr) !== 'string')
|
2011-08-04 20:32:01 +00:00
|
|
|
throw new TypeError('attribute (string) required');
|
|
|
|
if (typeof(value) !== 'string')
|
|
|
|
throw new TypeError('value (string) required');
|
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
|
|
|
control = validateControls(controls);
|
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
|
|
|
var req = new CompareRequest({
|
|
|
|
entry: dn.parse(name),
|
2011-08-04 21:25:12 +00:00
|
|
|
attribute: attr,
|
2011-08-04 20:32:01 +00:00
|
|
|
value: value,
|
|
|
|
controls: controls
|
|
|
|
});
|
|
|
|
|
|
|
|
function _callback(err, res) {
|
|
|
|
if (err)
|
|
|
|
return callback(err);
|
|
|
|
|
|
|
|
return callback(null, (res.status === errors.LDAP_COMPARE_TRUE), res);
|
|
|
|
}
|
|
|
|
|
|
|
|
return this._send(req,
|
|
|
|
[errors.LDAP_COMPARE_TRUE, errors.LDAP_COMPARE_FALSE],
|
|
|
|
_callback);
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Deletes an entry from the LDAP server.
|
|
|
|
*
|
|
|
|
* @param {String} name the DN of the entry to delete.
|
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err, res).
|
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
|
|
|
Client.prototype.del = function(name, controls, callback) {
|
|
|
|
if (typeof(name) !== 'string')
|
|
|
|
throw new TypeError('name (string) required');
|
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
|
|
|
control = validateControls(controls);
|
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
|
|
|
var req = new DeleteRequest({
|
|
|
|
entry: dn.parse(name),
|
|
|
|
controls: controls
|
|
|
|
});
|
|
|
|
|
|
|
|
return this._send(req, [errors.LDAP_SUCCESS], callback);
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Performs an extended operation on the LDAP server.
|
|
|
|
*
|
|
|
|
* Pretty much none of the LDAP extended operations return an OID
|
|
|
|
* (responseName), so I just don't bother giving it back in the callback.
|
|
|
|
* It's on the third param in `res` if you need it.
|
|
|
|
*
|
|
|
|
* @param {String} name the OID of the extended operation to perform.
|
|
|
|
* @param {String} value value to pass in for this operation.
|
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err, value, res).
|
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
|
|
|
Client.prototype.exop = function(name, value, controls, callback) {
|
|
|
|
if (typeof(name) !== 'string')
|
|
|
|
throw new TypeError('name (string) required');
|
|
|
|
if (typeof(value) === 'function') {
|
|
|
|
callback = value;
|
|
|
|
controls = [];
|
|
|
|
value = '';
|
|
|
|
}
|
|
|
|
if (typeof(value) !== 'string')
|
|
|
|
throw new TypeError('value (string) required');
|
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
|
|
|
control = validateControls(controls);
|
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
|
|
|
var req = new ExtendedRequest({
|
|
|
|
requestName: name,
|
|
|
|
requestValue: value,
|
|
|
|
controls: controls
|
|
|
|
});
|
|
|
|
|
|
|
|
function _callback(err, res) {
|
|
|
|
if (err)
|
|
|
|
return callback(err);
|
|
|
|
|
|
|
|
return callback(null, res.responseValue || '', res);
|
|
|
|
}
|
|
|
|
|
|
|
|
return this._send(req, [errors.LDAP_SUCCESS], _callback);
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Performs an LDAP modify against the server.
|
|
|
|
*
|
|
|
|
* @param {String} name the DN of the entry to modify.
|
|
|
|
* @param {Change} change update to perform (can be [Change]).
|
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err, res).
|
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
|
|
|
Client.prototype.modify = function(name, change, controls, callback) {
|
|
|
|
if (typeof(name) !== 'string')
|
|
|
|
throw new TypeError('name (string) required');
|
2011-11-08 21:31:00 +00:00
|
|
|
if (typeof(change) !== 'object')
|
2011-08-04 20:32:01 +00:00
|
|
|
throw new TypeError('change (Change) required');
|
2011-11-08 21:31:00 +00:00
|
|
|
|
|
|
|
var changes = [];
|
|
|
|
|
|
|
|
function changeFromObject(change) {
|
|
|
|
if (!change.operation && !change.type)
|
|
|
|
throw new Error('change.operation required');
|
|
|
|
if (typeof(change.modification) !== 'object')
|
|
|
|
throw new Error('change.modification (object) required');
|
|
|
|
|
|
|
|
Object.keys(change.modification).forEach(function(k) {
|
|
|
|
var mod = {};
|
|
|
|
mod[k] = change.modification[k];
|
|
|
|
changes.push(new Change({
|
|
|
|
operation: change.operation || change.type,
|
|
|
|
modification: mod
|
|
|
|
}));
|
|
|
|
});
|
2011-08-04 20:32:01 +00:00
|
|
|
}
|
2011-11-08 21:31:00 +00:00
|
|
|
|
|
|
|
if (change instanceof Change) {
|
|
|
|
changes.push(change);
|
|
|
|
} else if (Array.isArray(change)) {
|
|
|
|
change.forEach(function(c) {
|
|
|
|
if (c instanceof Change) {
|
|
|
|
changes.push(c);
|
|
|
|
} else {
|
|
|
|
changeFromObject(c);
|
|
|
|
}
|
|
|
|
});
|
|
|
|
} else {
|
|
|
|
changeFromObject(change);
|
|
|
|
}
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
|
|
|
control = validateControls(controls);
|
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
|
|
|
var req = new ModifyRequest({
|
|
|
|
object: dn.parse(name),
|
2011-11-08 21:31:00 +00:00
|
|
|
changes: changes,
|
2011-08-04 20:32:01 +00:00
|
|
|
controls: controls
|
|
|
|
});
|
|
|
|
|
|
|
|
return this._send(req, [errors.LDAP_SUCCESS], callback);
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Performs an LDAP modifyDN against the server.
|
|
|
|
*
|
|
|
|
* This does not allow you to keep the old DN, as while the LDAP protocol
|
|
|
|
* has a facility for that, it's stupid. Just Search/Add.
|
|
|
|
*
|
|
|
|
* This will automatically deal with "new superior" logic.
|
|
|
|
*
|
|
|
|
* @param {String} name the DN of the entry to modify.
|
|
|
|
* @param {String} newName the new DN to move this entry to.
|
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err, res).
|
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
|
|
|
Client.prototype.modifyDN = function(name, newName, controls, callback) {
|
|
|
|
if (typeof(name) !== 'string')
|
|
|
|
throw new TypeError('name (string) required');
|
|
|
|
if (typeof(newName) !== 'string')
|
|
|
|
throw new TypeError('newName (string) required');
|
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
|
|
|
control = validateControls(controls);
|
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
|
|
|
var DN = dn.parse(name);
|
|
|
|
var newDN = dn.parse(newName);
|
|
|
|
|
|
|
|
var req = new ModifyDNRequest({
|
|
|
|
entry: DN,
|
|
|
|
deleteOldRdn: true,
|
|
|
|
controls: controls
|
|
|
|
});
|
|
|
|
|
|
|
|
if (newDN.length !== 1) {
|
|
|
|
req.newRdn = dn.parse(newDN.rdns.shift().toString());
|
|
|
|
req.newSuperior = newDN;
|
|
|
|
} else {
|
|
|
|
req.newRdn = newDN;
|
|
|
|
}
|
|
|
|
|
|
|
|
return this._send(req, [errors.LDAP_SUCCESS], callback);
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Performs an LDAP search against the server.
|
|
|
|
*
|
|
|
|
* Note that the defaults for options are a 'base' search, if that's what
|
|
|
|
* you want you can just pass in a string for options and it will be treated
|
|
|
|
* as the search filter. Also, you can either pass in programatic Filter
|
|
|
|
* objects or a filter string as the filter option.
|
|
|
|
*
|
|
|
|
* Note that this method is 'special' in that the callback 'res' param will
|
|
|
|
* have two important events on it, namely 'entry' and 'end' that you can hook
|
|
|
|
* to. The former will emit a SearchEntry object for each record that comes
|
|
|
|
* back, and the latter will emit a normal LDAPResult object.
|
|
|
|
*
|
|
|
|
* @param {String} base the DN in the tree to start searching at.
|
|
|
|
* @param {Object} options parameters:
|
|
|
|
* - {String} scope default of 'base'.
|
|
|
|
* - {String} filter default of '(objectclass=*)'.
|
|
|
|
* - {Array} attributes [string] to return.
|
|
|
|
* - {Boolean} attrsOnly whether to return values.
|
|
|
|
* @param {Control} controls (optional) either a Control or [Control].
|
|
|
|
* @param {Function} callback of the form f(err, res).
|
|
|
|
* @throws {TypeError} on invalid input.
|
|
|
|
*/
|
|
|
|
Client.prototype.search = function(base, options, controls, callback) {
|
2011-10-18 19:31:52 +00:00
|
|
|
if (typeof(base) !== 'string' && !(base instanceof dn.DN))
|
2011-08-04 20:32:01 +00:00
|
|
|
throw new TypeError('base (string) required');
|
|
|
|
if (Array.isArray(options) || (options instanceof Control)) {
|
|
|
|
controls = options;
|
|
|
|
options = {};
|
|
|
|
} else if (typeof(options) === 'function') {
|
|
|
|
callback = options;
|
|
|
|
controls = [];
|
|
|
|
options = {
|
|
|
|
filter: new PresenceFilter({attribute: 'objectclass'})
|
|
|
|
};
|
|
|
|
} else if (typeof(options) === 'string') {
|
|
|
|
options = {filter: filters.parseString(options)};
|
|
|
|
} else if (typeof(options) !== 'object') {
|
|
|
|
throw new TypeError('options (object) required');
|
|
|
|
}
|
2011-08-12 23:37:47 +00:00
|
|
|
if (typeof(options.filter) === 'string') {
|
|
|
|
options.filter = filters.parseString(options.filter);
|
|
|
|
} else if (!options.filter) {
|
|
|
|
options.filter = new PresenceFilter({attribute: 'objectclass'});
|
|
|
|
} else if (!(options.filter instanceof Filter)) {
|
2011-08-04 20:32:01 +00:00
|
|
|
throw new TypeError('options.filter (Filter) required');
|
2011-08-12 23:37:47 +00:00
|
|
|
}
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
if (typeof(controls) === 'function') {
|
|
|
|
callback = controls;
|
|
|
|
controls = [];
|
|
|
|
} else {
|
2011-09-16 16:06:07 +00:00
|
|
|
controls = validateControls(controls);
|
2011-08-04 20:32:01 +00:00
|
|
|
}
|
|
|
|
if (typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback (function) required');
|
|
|
|
|
|
|
|
var req = new SearchRequest({
|
2011-10-18 19:31:52 +00:00
|
|
|
baseObject: typeof(base) === 'string' ? dn.parse(base) : base,
|
2011-08-04 20:32:01 +00:00
|
|
|
scope: options.scope || 'base',
|
|
|
|
filter: options.filter,
|
|
|
|
derefAliases: Protocol.NEVER_DEREF_ALIASES,
|
|
|
|
sizeLimit: options.sizeLimit || 0,
|
|
|
|
timeLimit: options.timeLimit || 10,
|
|
|
|
typesOnly: options.typesOnly || false,
|
2011-09-16 16:06:07 +00:00
|
|
|
attributes: options.attributes || [],
|
|
|
|
controls: controls
|
2011-08-04 20:32:01 +00:00
|
|
|
});
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
if (!this.connection)
|
|
|
|
return callback(new ConnectionError('no connection'));
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
var res = new EventEmitter();
|
2011-11-09 22:44:12 +00:00
|
|
|
|
|
|
|
// This is some whacky logic to account for the connection not being
|
|
|
|
// reconnected, and having thrown an error like "NotWriteable". Because
|
|
|
|
// the event emitter logic will never block, we'll end up returning from
|
|
|
|
// the event.on('error'), rather than "normally".
|
|
|
|
var self = this;
|
|
|
|
var done = false;
|
|
|
|
function errorIfNoConn(err) {
|
|
|
|
if (done)
|
|
|
|
return;
|
|
|
|
|
|
|
|
done = true;
|
|
|
|
return callback(err);
|
|
|
|
}
|
|
|
|
res.once('error', errorIfNoConn);
|
2011-08-04 20:32:01 +00:00
|
|
|
this._send(req, [errors.LDAP_SUCCESS], res);
|
2011-11-09 22:44:12 +00:00
|
|
|
|
|
|
|
done = true;
|
|
|
|
res.removeListener('error', errorIfNoConn);
|
2011-08-04 20:32:01 +00:00
|
|
|
return callback(null, res);
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Unbinds this client from the LDAP server.
|
|
|
|
*
|
|
|
|
* Note that unbind does not have a response, so this callback is actually
|
|
|
|
* optional; either way, the client is disconnected.
|
|
|
|
*
|
|
|
|
* @param {Function} callback of the form f(err).
|
|
|
|
* @throws {TypeError} if you pass in callback as not a function.
|
|
|
|
*/
|
|
|
|
Client.prototype.unbind = function(callback) {
|
|
|
|
if (callback && typeof(callback) !== 'function')
|
|
|
|
throw new TypeError('callback must be a function');
|
|
|
|
if (!callback)
|
|
|
|
callback = function defUnbindCb() { self.log.trace('disconnected'); };
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
var self = this;
|
|
|
|
this.reconnect = false;
|
|
|
|
this._bindDN = null;
|
|
|
|
this._credentials = null;
|
|
|
|
|
2011-11-09 22:55:13 +00:00
|
|
|
if (!this.connect)
|
|
|
|
return callback();
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
var req = new UnbindRequest();
|
2011-09-02 13:29:33 +00:00
|
|
|
return self._send(req, 'unbind', callback);
|
2011-08-04 20:32:01 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
Client.prototype._send = function(message, expect, callback, connection) {
|
2011-08-04 20:32:01 +00:00
|
|
|
assert.ok(message);
|
|
|
|
assert.ok(expect);
|
|
|
|
assert.ok(callback);
|
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
var conn = connection || this.connection;
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
var self = this;
|
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
function closedConn() {
|
2011-11-09 22:55:13 +00:00
|
|
|
if (conn)
|
|
|
|
conn.destroy();
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
if (typeof(callback) === 'function')
|
|
|
|
return callback(new ConnectionError('no connection'));
|
|
|
|
|
|
|
|
return callback.emit('error', new ConnectionError('no connection'));
|
|
|
|
}
|
2011-08-04 20:32:01 +00:00
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
if (!conn)
|
|
|
|
return closedConn();
|
|
|
|
|
2011-08-04 20:32:01 +00:00
|
|
|
// Now set up the callback in the messages table
|
|
|
|
message.messageID = conn.ldap.nextMessageID;
|
2011-11-07 22:13:53 +00:00
|
|
|
if (expect !== 'abandon') {
|
|
|
|
conn.ldap.messages[message.messageID] = function(res) {
|
|
|
|
if (self.log.isDebugEnabled())
|
|
|
|
self.log.debug('%s: response received: %j', conn.ldap.id, res.json);
|
2011-08-04 20:32:01 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
var err = null;
|
2011-09-27 18:49:33 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
if (res instanceof LDAPResult) {
|
|
|
|
delete conn.ldap.messages[message.messageID];
|
2011-08-04 20:32:01 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
if (expect.indexOf(res.status) === -1) {
|
|
|
|
err = errors.getError(res);
|
|
|
|
if (typeof(callback) === 'function')
|
|
|
|
return callback(err);
|
2011-08-04 20:32:01 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
return callback.emit('error', err);
|
|
|
|
}
|
2011-08-04 20:32:01 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
if (typeof(callback) === 'function')
|
|
|
|
return callback(null, res);
|
2011-08-04 20:32:01 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
callback.emit('end', res);
|
|
|
|
} else if (res instanceof SearchEntry) {
|
|
|
|
assert.ok(callback instanceof EventEmitter);
|
|
|
|
callback.emit('searchEntry', res);
|
2011-09-27 18:49:33 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
} else if (res instanceof SearchReference) {
|
|
|
|
assert.ok(callback instanceof EventEmitter);
|
|
|
|
callback.emit('searchReference', res);
|
2011-09-27 18:49:33 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
} else if (res instanceof Error) {
|
2011-11-09 22:44:12 +00:00
|
|
|
if (typeof(callback) === 'function')
|
|
|
|
return callback(res);
|
2011-09-27 18:49:33 +00:00
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
assert.ok(callback instanceof EventEmitter);
|
|
|
|
callback.emit('error', res);
|
2011-11-07 22:13:53 +00:00
|
|
|
} else {
|
|
|
|
delete conn.ldap.messages[message.messageID];
|
2011-08-04 20:32:01 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
err = new errors.ProtocolError(res.type);
|
|
|
|
if (typeof(callback) === 'function')
|
|
|
|
return callback(err);
|
2011-08-04 20:32:01 +00:00
|
|
|
|
2011-11-07 22:13:53 +00:00
|
|
|
callback.emit('error', err);
|
|
|
|
}
|
|
|
|
};
|
|
|
|
}
|
2011-08-04 20:32:01 +00:00
|
|
|
|
|
|
|
// Finally send some data
|
|
|
|
if (this.log.isDebugEnabled())
|
|
|
|
this.log.debug('%s: sending request: %j', conn.ldap.id, message.json);
|
|
|
|
|
|
|
|
// Note if this was an unbind, we just go ahead and end, since there
|
|
|
|
// will never be a response
|
2011-11-07 22:13:53 +00:00
|
|
|
var _writeCb = null;
|
|
|
|
if (expect === 'abandon') {
|
|
|
|
_writeCb = function() {
|
|
|
|
return callback();
|
|
|
|
};
|
|
|
|
} else if (expect === 'unbind') {
|
|
|
|
_writeCb = function() {
|
2011-11-08 21:10:39 +00:00
|
|
|
conn.unbindMessageID = message.id;
|
2011-11-07 22:13:53 +00:00
|
|
|
conn.end();
|
|
|
|
};
|
|
|
|
} else {
|
|
|
|
// noop
|
|
|
|
}
|
2011-11-09 22:44:12 +00:00
|
|
|
|
|
|
|
try {
|
|
|
|
return conn.write(message.toBer(), _writeCb);
|
|
|
|
} catch (e) {
|
|
|
|
conn.end();
|
|
|
|
return closedConn();
|
|
|
|
}
|
2011-08-04 20:32:01 +00:00
|
|
|
};
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
|
|
|
|
Client.prototype._newConnection = function() {
|
|
|
|
var c;
|
|
|
|
var connectOpts = this.connectOptions;
|
|
|
|
var log = this.log;
|
|
|
|
var self = this;
|
|
|
|
|
|
|
|
if (this.secure) {
|
2011-11-09 22:44:12 +00:00
|
|
|
c = tls.connect(connectOpts.port, connectOpts.host, function() {
|
|
|
|
if (log.isTraceEnabled())
|
|
|
|
log.trace('%s connect event', c.ldap.id);
|
|
|
|
|
|
|
|
c.ldap.connected = true;
|
|
|
|
c.ldap.id += ':' + c.fd;
|
|
|
|
c.emit('connect', true);
|
|
|
|
});
|
|
|
|
c.setKeepAlive = function(enable, delay) {
|
|
|
|
return c.socket.setKeepAlive(enable, delay);
|
|
|
|
};
|
2011-09-26 23:45:49 +00:00
|
|
|
} else {
|
|
|
|
c = net.createConnection(connectOpts.port, connectOpts.host);
|
|
|
|
}
|
|
|
|
assert.ok(c);
|
|
|
|
|
|
|
|
c.parser = new Parser({
|
|
|
|
log4js: self.log4js
|
|
|
|
});
|
|
|
|
|
|
|
|
// Wrap the events
|
|
|
|
c.ldap = {
|
|
|
|
id: connectOpts.socketPath || self.url.hostname,
|
|
|
|
messageID: 0,
|
|
|
|
messages: {}
|
|
|
|
};
|
|
|
|
|
|
|
|
c.ldap.__defineGetter__('nextMessageID', function() {
|
|
|
|
if (++c.ldap.messageID >= MAX_MSGID)
|
|
|
|
c.ldap.messageID = 1;
|
|
|
|
return c.ldap.messageID;
|
|
|
|
});
|
|
|
|
|
|
|
|
c.on('connect', function() {
|
|
|
|
if (log.isTraceEnabled())
|
2011-11-09 22:44:12 +00:00
|
|
|
log.trace('%s connect event', c.ldap.id); c.ldap.connected = true;
|
2011-09-26 23:45:49 +00:00
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
c.ldap.id += ':' + c.fd;
|
|
|
|
self.emit('connect', c.ldap.id);
|
2011-09-26 23:45:49 +00:00
|
|
|
});
|
|
|
|
|
|
|
|
c.on('end', function() {
|
|
|
|
if (log.isTraceEnabled())
|
|
|
|
log.trace('%s end event', c.ldap.id);
|
2011-11-09 22:44:12 +00:00
|
|
|
|
|
|
|
c.end();
|
2011-09-26 23:45:49 +00:00
|
|
|
});
|
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
c.on('close', function(had_err) {
|
2011-09-26 23:45:49 +00:00
|
|
|
if (log.isTraceEnabled())
|
|
|
|
log.trace('%s close event had_err=%s', c.ldap.id, had_err ? 'yes' : 'no');
|
|
|
|
|
|
|
|
Object.keys(c.ldap.messages).forEach(function(msgid) {
|
2011-11-08 21:10:39 +00:00
|
|
|
var err;
|
|
|
|
if (c.unbindMessageID !== parseInt(msgid, 10)) {
|
|
|
|
err = new ConnectionError(c.ldap.id + ' closed');
|
|
|
|
} else {
|
|
|
|
err = new UnbindResponse({
|
|
|
|
messageID: msgid,
|
|
|
|
});
|
|
|
|
err.status = 'unbind';
|
|
|
|
}
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
if (typeof(c.ldap.messages[msgid]) === 'function') {
|
2011-11-08 21:10:39 +00:00
|
|
|
var callback = c.ldap.messages[msgid];
|
2011-09-26 23:45:49 +00:00
|
|
|
delete c.ldap.messages[msgid];
|
2011-11-08 21:10:39 +00:00
|
|
|
return callback(err);
|
2011-09-26 23:45:49 +00:00
|
|
|
} else if (c.ldap.messages[msgid]) {
|
2011-11-08 21:10:39 +00:00
|
|
|
if (err instanceof Error)
|
|
|
|
c.ldap.messages[msgid].emit('error', err);
|
|
|
|
delete c.ldap.messages[msgid];
|
2011-09-26 23:45:49 +00:00
|
|
|
}
|
2011-11-08 21:10:39 +00:00
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
delete c.ldap;
|
|
|
|
delete c.parser;
|
|
|
|
});
|
2011-09-26 23:45:49 +00:00
|
|
|
});
|
|
|
|
|
|
|
|
c.on('error', function(err) {
|
|
|
|
if (log.isTraceEnabled())
|
|
|
|
log.trace('%s error event=%s', c.ldap.id, err ? err.stack : '?');
|
|
|
|
|
2011-11-09 22:44:12 +00:00
|
|
|
if (self.listeners('error').length)
|
|
|
|
self.emit('error', err);
|
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
c.end();
|
|
|
|
});
|
|
|
|
|
|
|
|
c.on('timeout', function() {
|
|
|
|
if (log.isTraceEnabled())
|
|
|
|
log.trace('%s timeout event=%s', c.ldap.id);
|
|
|
|
|
|
|
|
c.end();
|
|
|
|
});
|
|
|
|
|
|
|
|
c.on('data', function(data) {
|
|
|
|
if (log.isTraceEnabled())
|
|
|
|
log.trace('%s data event: %s', c.ldap.id, util.inspect(data));
|
2011-11-09 22:44:12 +00:00
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
c.parser.write(data);
|
|
|
|
});
|
|
|
|
|
|
|
|
// The "router"
|
|
|
|
c.parser.on('message', function(message) {
|
|
|
|
message.connection = c;
|
|
|
|
var callback = c.ldap.messages[message.messageID];
|
2011-11-09 22:44:12 +00:00
|
|
|
|
2011-09-26 23:45:49 +00:00
|
|
|
if (!callback) {
|
|
|
|
log.error('%s: unsolicited message: %j', c.ldap.id, message.json);
|
|
|
|
return;
|
|
|
|
}
|
|
|
|
|
|
|
|
return callback(message);
|
|
|
|
});
|
|
|
|
|
|
|
|
return c;
|
2011-10-17 23:37:09 +00:00
|
|
|
};
|