org.springframework.ldap.support.LdapNameBuilder Java Examples

/**
 * This method can be used to add new user by passing required parameters.
 */
private void addUser() {
	LdapAuthUser ldapUser = new LdapAuthUser();
       ldapUser.setUserName("kpatel");
       ldapUser.setPassword("test1234");
       ldapUser.setFirstName("Komal");
       ldapUser.setSurName("Patel");
       ldapUser.setIsNew(true);
       
       Name dn = LdapNameBuilder.newInstance()
             .add("ou=users")
             .add("uid=kpatel")
             .build();
       ldapUser.setId(dn);
       
       ldapAuthService.addUser(ldapUser);
}
 

@Override
public void createByBindOperation(LdapAuthUser ldapAuthUser) {
	
	DirContextOperations ctx = new DirContextAdapter();
	ctx.setAttributeValues("objectclass", new String[] {"top", "person", "organizationalPerson","inetOrgPerson"});
	ctx.setAttributeValue("cn", ldapAuthUser.getFirstName());
	ctx.setAttributeValue("sn", ldapAuthUser.getSurName());
	ctx.setAttributeValue("uid", ldapAuthUser.getUserName());
	ctx.setAttributeValue("userPassword", ldapAuthUser.getPassword());
	
	Name dn = LdapNameBuilder.newInstance()
		      .add("ou=users")
		      .add("uid=bpatel")
		      .build();
	
	ctx.setDn(dn);
	ldapTemplate.bind(ctx);
	
}
 

/**
 * Builds the Spring Authentication object using the supplied user name and groups looked up from LDAP.  Groups are currently
 * mapped directly to Spring roles by converting to upper case and prepending the name with "ROLE_".
 * @param userName The username to build the Authentication object with.
 * @param httpRequest HttpServletRequest
 * @return Authentication object for the given user.
 */
protected Authentication getAuthentication(String userName, HttpServletRequest httpRequest) {
  String ldapName = LdapNameBuilder.newInstance().add(userSearchBase).add("uid", userName).build().toString();

  // Search ldap for a user's groups and convert to a Spring role
  List<GrantedAuthority> grantedAuths = ldapTemplate.search(query()
          .where("objectclass")
          .is("groupOfNames")
          .and("member")
          .is(ldapName), (AttributesMapper<String>) attrs -> (String) attrs.get("cn").get())
          .stream()
          .map(group -> String.format("%s%s", SECURITY_ROLE_PREFIX, group.toUpperCase()))
          .map(SimpleGrantedAuthority::new).collect(Collectors.toList());

  final UserDetails principal = new User(userName, "", grantedAuths);
  final UsernamePasswordAuthenticationToken authentication = new UsernamePasswordAuthenticationToken(
          principal, "", grantedAuths);
  WebAuthenticationDetails webDetails = new WebAuthenticationDetails(httpRequest);
  authentication.setDetails(webDetails);
  return authentication;
}
 

@Test
public void testCreate() {
    Person person = new Person();
    person.setDn(LdapNameBuilder.newInstance("ou=company1,ou=Sweden")
            .add("cn", "New Person").build());
    person.setCommonName("New Person");
    person.setSurname("Person");
    person.setDesc(Arrays.asList("This is the description"));
    person.setTelephoneNumber("0123456");

    tested.create(person);

    assertThat(tested.findAll(Person.class)).hasSize(6);

    person = tested.findOne(query()
            .where("cn").is("New Person"), Person.class);

    assertThat(person.getCommonName()).isEqualTo("New Person");
    assertThat(person.getSurname()).isEqualTo("Person");
    assertThat(person.getDesc().get(0)).isEqualTo("This is the description");
    assertThat(person.getTelephoneNumber()).isEqualTo("0123456");
    assertThat(person.getEntryUuid()).describedAs("The operational attribute 'entryUUID' was not set").isNotEmpty();
}
 

@Override
public Name getCalculatedId(Object entry) {
    Assert.notNull(entry, "Entry must not be null");
    EntityData entityData = getEntityData(entry.getClass());
    if(entityData.metaData.canCalculateDn()) {
        Set<AttributeMetaData> dnAttributes = entityData.metaData.getDnAttributes();
        LdapNameBuilder ldapNameBuilder = LdapNameBuilder.newInstance(entityData.metaData.getBase());

        for (AttributeMetaData dnAttribute : dnAttributes) {
            Object dnFieldValue = ReflectionUtils.getField(dnAttribute.getField(), entry);
            if(dnFieldValue == null) {
                throw new IllegalStateException(
                        String.format("DnAttribute for field %s on class %s is null; cannot build DN",
                                dnAttribute.getField().getName(), entry.getClass().getName()));
            }

            ldapNameBuilder.add(dnAttribute.getDnAttribute().value(), dnFieldValue.toString());
        }

        return ldapNameBuilder.build();
    }

    return null;
}
 

@Override
public void deleteFromTemplateWithUnbind(String userName) {
	Name dn = LdapNameBuilder.newInstance()
		      .add("ou=users")
		      .add("uid="+userName)
		      .build();
	ldapTemplate.unbind(dn);
}
 

public void addUser(LdapAuthUser ldapAuthUser) {
	Name dn = LdapNameBuilder
		      .newInstance()
		      .add("uid", ldapAuthUser.getUserName())
		      .add("ou", "users")
		      .build();

	boolean isExist =  ldapAuthRepository.existsById(dn);
	if(isExist ==false) {
		ldapAuthRepository.save(ldapAuthUser);
	}else {
		logger.info("User with username "+ldapAuthUser.getUserName()+" is already exist ");
	}
}
 

@Override
public void afterPropertiesSet() throws Exception {
    String searchFilter = environment.getProperty("lookup.user.filter");
    LOGGER.debug("Looking for a LDAP user's identifier using search filter [{}]", searchFilter);

    if (searchFilter != null) {
        identifierAttribute = LdapUtils.extractAttribute(searchFilter);

        LOGGER.info("User identifier is based on the [{}] attribute", identifierAttribute);

        userAttributes = new String [] {
                identifierAttribute, LDAP_ATTRIBUTE_GIVENNAME, LDAP_ATTRIBUTE_SURNAME,
                LDAP_ATTRIBUTE_MAIL, LDAP_ATTRIBUTE_DISPLAYNAME
        };
    } else {
        userAttributes = new String [] {
                LDAP_ATTRIBUTE_GIVENNAME, LDAP_ATTRIBUTE_SURNAME,
                LDAP_ATTRIBUTE_MAIL, LDAP_ATTRIBUTE_DISPLAYNAME
        };
    }

    // Base DN to search for users
    baseDn = LdapNameBuilder
            .newInstance(environment.getProperty("context.base"))
            .add(environment.getProperty("lookup.user.base", ""))
            .build();

    LOGGER.info("User search is based on DN [{}]", baseDn);
}
 

public void create(final String username, final String password) {
    Name dn = LdapNameBuilder
      .newInstance()
      .add("ou", "users")
      .add("cn", username)
      .build();
    DirContextAdapter context = new DirContextAdapter(dn);

    context.setAttributeValues("objectclass", new String[]{"top", "person", "organizationalPerson", "inetOrgPerson"});
    context.setAttributeValue("cn", username);
    context.setAttributeValue("sn", username);
    context.setAttributeValue("userPassword", digestSHA(password));

    ldapTemplate.bind(context);
}
 

public void modify(final String username, final String password) {
    Name dn = LdapNameBuilder
      .newInstance()
      .add("ou", "users")
      .add("cn", username)
      .build();
    DirContextOperations context = ldapTemplate.lookupContext(dn);

    context.setAttributeValues("objectclass", new String[]{"top", "person", "organizationalPerson", "inetOrgPerson"});
    context.setAttributeValue("cn", username);
    context.setAttributeValue("sn", username);
    context.setAttributeValue("userPassword", digestSHA(password));

    ldapTemplate.modifyAttributes(context);
}
 

public void create(final String username, final String password) {
    Name dn = LdapNameBuilder
      .newInstance()
      .add("ou", "users")
      .add("cn", username)
      .build();
    DirContextAdapter context = new DirContextAdapter(dn);

    context.setAttributeValues("objectclass", new String[] { "top", "person", "organizationalPerson", "inetOrgPerson" });
    context.setAttributeValue("cn", username);
    context.setAttributeValue("sn", username);
    context.setAttributeValue("userPassword", digestSHA(password));

    ldapTemplate.bind(context);
}
 

public void modify(final String username, final String password) {
    Name dn = LdapNameBuilder
      .newInstance()
      .add("ou", "users")
      .add("cn", username)
      .build();
    DirContextOperations context = ldapTemplate.lookupContext(dn);

    context.setAttributeValues("objectclass", new String[] { "top", "person", "organizationalPerson", "inetOrgPerson" });
    context.setAttributeValue("cn", username);
    context.setAttributeValue("sn", username);
    context.setAttributeValue("userPassword", digestSHA(password));

    ldapTemplate.modifyAttributes(context);
}
 

private LdapName buildDn(String country, String company, String fullname) {
       return LdapNameBuilder.newInstance()
               .add("c", country)
               .add("ou", company)
               .add("cn", fullname)
               .build();
}
 

private LdapName buildDn(String country, String company, String fullname) {
       return LdapNameBuilder.newInstance()
               .add("c", country)
               .add("ou", company)
               .add("cn", fullname)
               .build();
}
 

public LdapName toAbsoluteDn(Name relativeName) {
    return LdapNameBuilder.newInstance(baseLdapPath)
            .add(relativeName)
            .build();
}
 

private List<String> getAllUnitsForDepartment(String department) {
    return ldapTemplate.list(LdapNameBuilder
            .newInstance(DEPARTMENTS_OU).add("ou", department).build(), new OuValueNameClassPairMapper());
}