Package com.peterphi.usermanager.guice.authentication.ldap

Class LDAPSearchService

java.lang.Object

com.peterphi.usermanager.guice.authentication.ldap.LDAPSearchService

public class LDAPSearchService
extends Object

Field Summary

Fields

Modifier and Type	Field	Description
String	domain
String	groupAdmin
String	groupFrameworkAdmin
String	groupFrameworkInfo
String	groupUser
String	groupUserManagerAdmin
String	ldapAuthenticationType
String	ldapEndpoint
String	ldapFilter	Formatted with 1 argument, the username
String	ldapGroupFilter	Formatted with 1 argument, the user's DN.
String	ldapGroupFind	The find pattern to use on group DNs.
String	ldapGroupReplace	The replacement pattern to use after the find pattern is executed - e.g.
long	ldapReadTimeout
String	ldapSearchBase

Constructor Summary

Constructors

Constructor	Description
LDAPSearchService()

Method Summary

Modifier and Type	Method	Description
NamingEnumeration<SearchResult>	executeLdapSearch(DirContext ldapContext, SearchControls search, String searchFilter)
LDAPUser	parseUser(String inputUsername)
LDAPUserRecord	search(LDAPUser authUser, String password, LDAPUser searchFor)
Map<LDAPUser,LDAPUserRecord>	search(LDAPUser authUser, String password, List<LDAPUser> searchForAll)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Details

domain

@Inject
public String domain

ldapEndpoint

@Inject
public String ldapEndpoint

ldapAuthenticationType

@Inject(optional=true)
public String ldapAuthenticationType

ldapReadTimeout

@Inject(optional=true)
public long ldapReadTimeout

ldapSearchBase

@Inject
public String ldapSearchBase

ldapFilter

@Inject
public String ldapFilter

Formatted with 1 argument, the username

ldapGroupFilter

@Inject(optional=true)
public String ldapGroupFilter

Formatted with 1 argument, the user's DN. Searches for the groups a user is a member of (directly or indirectly)

ldapGroupFind

@Inject
public String ldapGroupFind

The find pattern to use on group DNs. e.g. (?i)^cn=([^,]+),

ldapGroupReplace

@Inject
public String ldapGroupReplace

The replacement pattern to use after the find pattern is executed - e.g. $1 for the first capture group

groupUserManagerAdmin

@Inject(optional=true)
public String groupUserManagerAdmin

groupAdmin

@Inject(optional=true)
public String groupAdmin

groupUser

@Inject(optional=true)
public String groupUser

groupFrameworkAdmin

@Inject(optional=true)
public String groupFrameworkAdmin

groupFrameworkInfo

@Inject(optional=true)
public String groupFrameworkInfo

Constructor Details

LDAPSearchService

public LDAPSearchService()

Method Details

parseUser

public LDAPUser parseUser(String inputUsername)

search

@Nullable
public LDAPUserRecord search(LDAPUser authUser,
 String password,
 LDAPUser searchFor)

Parameters:

authUser -

password -

searchFor -

Returns:

the LDAP user record - or null if the user did not meet the ldap search criteria

search

public Map<LDAPUser,LDAPUserRecord> search(LDAPUser authUser,
 String password,
 List<LDAPUser> searchForAll)

executeLdapSearch

public NamingEnumeration<SearchResult> executeLdapSearch(DirContext ldapContext,
 SearchControls search,
 String searchFilter)
                                                  throws LDAPSearchException

Throws:

LDAPSearchException