mirrors
/
sonarqube
mirror of https://github.com/SonarSource/sonarqube.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 237 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
29003 Commits
59 Branches
Tree: 274c9faaf5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '274c9faaf5'
${ noResults }
sonarqube/server/sonar-auth-ldap/src/main/java/org/sonar/auth/ldap/LdapSearch.java

LdapSearch.java 5.3KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191 
  1. /*

  2.  * SonarQube

  3.  * Copyright (C) 2009-2019 SonarSource SA

  4.  * mailto:info AT sonarsource DOT com

  5.  *

  6.  * This program is free software; you can redistribute it and/or

  7.  * modify it under the terms of the GNU Lesser General Public

  8.  * License as published by the Free Software Foundation; either

  9.  * version 3 of the License, or (at your option) any later version.

  10.  *

  11.  * This program is distributed in the hope that it will be useful,

  12.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

  14.  * Lesser General Public License for more details.

  15.  *

  16.  * You should have received a copy of the GNU Lesser General Public License

  17.  * along with this program; if not, write to the Free Software Foundation,

  18.  * Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

  19.  */

  20. package org.sonar.auth.ldap;

  21. 

  22. import java.util.Arrays;

  23. import javax.naming.NamingEnumeration;

  24. import javax.naming.NamingException;

  25. import javax.naming.PartialResultException;

  26. import javax.naming.directory.InitialDirContext;

  27. import javax.naming.directory.SearchControls;

  28. import javax.naming.directory.SearchResult;

  29. import org.sonar.api.utils.log.Logger;

  30. import org.sonar.api.utils.log.Loggers;

  31. 

  32. /**

  33.  * Fluent API for building LDAP queries.

  34.  *

  35.  * @author Evgeny Mandrikov

  36.  */

  37. public class LdapSearch {

  38. 

  39.   private static final Logger LOG = Loggers.get(LdapSearch.class);

  40. 

  41.   private final LdapContextFactory contextFactory;

  42. 

  43.   private String baseDn;

  44.   private int scope = SearchControls.SUBTREE_SCOPE;

  45.   private String request;

  46.   private String[] parameters;

  47.   private String[] returningAttributes;

  48. 

  49.   public LdapSearch(LdapContextFactory contextFactory) {

  50.     this.contextFactory = contextFactory;

  51.   }

  52. 

  53.   /**

  54.    * Sets BaseDN.

  55.    */

  56.   public LdapSearch setBaseDn(String baseDn) {

  57.     this.baseDn = baseDn;

  58.     return this;

  59.   }

  60. 

  61.   public String getBaseDn() {

  62.     return baseDn;

  63.   }

  64. 

  65.   /**

  66.    * Sets the search scope.

  67.    *

  68.    * @see SearchControls#ONELEVEL_SCOPE

  69.    * @see SearchControls#SUBTREE_SCOPE

  70.    * @see SearchControls#OBJECT_SCOPE

  71.    */

  72.   public LdapSearch setScope(int scope) {

  73.     this.scope = scope;

  74.     return this;

  75.   }

  76. 

  77.   public int getScope() {

  78.     return scope;

  79.   }

  80. 

  81.   /**

  82.    * Sets request.

  83.    */

  84.   public LdapSearch setRequest(String request) {

  85.     this.request = request;

  86.     return this;

  87.   }

  88. 

  89.   public String getRequest() {

  90.     return request;

  91.   }

  92. 

  93.   /**

  94.    * Sets search parameters.

  95.    */

  96.   public LdapSearch setParameters(String... parameters) {

  97.     this.parameters = parameters;

  98.     return this;

  99.   }

  100. 

  101.   public String[] getParameters() {

  102.     return parameters;

  103.   }

  104. 

  105.   /**

  106.    * Sets attributes, which should be returned by search.

  107.    */

  108.   public LdapSearch returns(String... attributes) {

  109.     this.returningAttributes = attributes;

  110.     return this;

  111.   }

  112. 

  113.   public String[] getReturningAttributes() {

  114.     return returningAttributes;

  115.   }

  116. 

  117.   /**

  118.    * @throws NamingException if unable to perform search

  119.    */

  120.   public NamingEnumeration<SearchResult> find() throws NamingException {

  121.     LOG.debug("Search: {}", this);

  122.     NamingEnumeration<SearchResult> result;

  123.     InitialDirContext context = null;

  124.     boolean threw = false;

  125.     try {

  126.       context = contextFactory.createBindContext();

  127.       SearchControls controls = new SearchControls();

  128.       controls.setSearchScope(scope);

  129.       controls.setReturningAttributes(returningAttributes);

  130.       result = context.search(baseDn, request, parameters, controls);

  131.       threw = true;

  132.     } finally {

  133.       ContextHelper.close(context, threw);

  134.     }

  135.     return result;

  136.   }

  137. 

  138.   /**

  139.    * @return result, or null if not found

  140.    * @throws NamingException if unable to perform search, or non unique result

  141.    */

  142.   public SearchResult findUnique() throws NamingException {

  143.     NamingEnumeration<SearchResult> result = find();

  144.     if (hasMore(result)) {

  145.       SearchResult obj = result.next();

  146.       if (!hasMore(result)) {

  147.         return obj;

  148.       }

  149.       throw new NamingException("Non unique result for " + toString());

  150.     }

  151.     return null;

  152.   }

  153. 

  154.   private static boolean hasMore(NamingEnumeration<SearchResult> result) throws NamingException {

  155.     try {

  156.       return result.hasMore();

  157.     } catch (PartialResultException e) {

  158.       LOG.debug("More result might be forthcoming if the referral is followed", e);

  159.       // See LDAP-62 and http://docs.oracle.com/javase/jndi/tutorial/ldap/referral/jndi.html :

  160.       // When the LDAP service provider receives a referral despite your having set Context.REFERRAL to "ignore", it will throw a

  161.       // PartialResultException(in the API reference documentation) to indicate that more results might be forthcoming if the referral is

  162.       // followed. In this case, the server does not support the Manage Referral control and is supporting referral updates in some other

  163.       // way.

  164.       return false;

  165.     }

  166.   }

  167. 

  168.   @Override

  169.   public String toString() {

  170.     return getClass().getSimpleName() + "{" +

  171.       "baseDn=" + baseDn +

  172.       ", scope=" + scopeToString() +

  173.       ", request=" + request +

  174.       ", parameters=" + Arrays.toString(parameters) +

  175.       ", attributes=" + Arrays.toString(returningAttributes) +

  176.       "}";

  177.   }

  178. 

  179.   private String scopeToString() {

  180.     switch (scope) {

  181.       case SearchControls.ONELEVEL_SCOPE:

  182.         return "onelevel";

  183.       case SearchControls.OBJECT_SCOPE:

  184.         return "object";

  185.       case SearchControls.SUBTREE_SCOPE:

  186.       default:

  187.         return "subtree";

  188.     }

  189.   }

  190. 

  191. }