Example 26 with FinderException
use of org.apache.directory.fortress.core.FinderException in project directory-fortress-core by apache.
the class UserDAO method getUserRoles.
/**
* @param userId
* @return
* @throws FinderException
*/
private List<UserRole> getUserRoles(String userId, String contextId) throws FinderException {
List<UserRole> roles = null;
LdapConnection ld = null;
String userDn = getDn(userId, contextId);
try {
ld = getAdminConnection();
Entry findEntry = read(ld, userDn, ROLE_ATR);
roles = unloadUserRoles(findEntry, userId, contextId, null);
} catch (LdapNoSuchObjectException e) {
String warning = "getUserRoles COULD NOT FIND ENTRY for user [" + userId + "]";
throw new FinderException(GlobalErrIds.USER_NOT_FOUND, warning);
} catch (LdapException e) {
String error = "getUserRoles [" + userDn + "]= caught LDAPException=" + e.getMessage();
throw new FinderException(GlobalErrIds.USER_READ_FAILED, error, e);
} finally {
closeAdminConnection(ld);
}
return roles;
}
Also used :
LdapNoSuchObjectException(org.apache.directory.api.ldap.model.exception.LdapNoSuchObjectException)
FinderException(org.apache.directory.fortress.core.FinderException)
DefaultEntry(org.apache.directory.api.ldap.model.entry.DefaultEntry)
Entry(org.apache.directory.api.ldap.model.entry.Entry)
UserRole(org.apache.directory.fortress.core.model.UserRole)
LdapException(org.apache.directory.api.ldap.model.exception.LdapException)
LdapConnection(org.apache.directory.ldap.client.api.LdapConnection)
Example 27 with FinderException
use of org.apache.directory.fortress.core.FinderException in project directory-fortress-core by apache.
the class UserDAO method getAssignedUserIds.
/**
* @param role
* @return
* @throws FinderException
*/
List<String> getAssignedUserIds(Role role) throws FinderException {
List<String> userList = new ArrayList<>();
LdapConnection ld = null;
String userRoot = getRootDn(role.getContextId(), GlobalIds.USER_ROOT);
try {
String roleVal = encodeSafeText(role.getName(), GlobalIds.USERID_LEN);
StringBuilder filterbuf = new StringBuilder();
filterbuf.append(GlobalIds.FILTER_PREFIX);
filterbuf.append(USERS_AUX_OBJECT_CLASS_NAME);
filterbuf.append(")(");
filterbuf.append(GlobalIds.USER_ROLE_ASSIGN);
filterbuf.append("=");
filterbuf.append(roleVal);
filterbuf.append("))");
ld = getAdminConnection();
SearchCursor searchResults = search(ld, userRoot, SearchScope.ONELEVEL, filterbuf.toString(), USERID_ATR, false, GlobalIds.BATCH_SIZE);
long sequence = 0;
while (searchResults.next()) {
userList.add(unloadUser(searchResults.getEntry()));
}
} catch (LdapException e) {
String warning = "getAssignedUserIds role name [" + role.getName() + "] caught LDAPException=" + e.getMessage();
throw new FinderException(GlobalErrIds.URLE_SEARCH_FAILED, warning, e);
} catch (CursorException e) {
String warning = "getAssignedUserIds role name [" + role.getName() + "] caught LDAPException=" + e.getMessage();
throw new FinderException(GlobalErrIds.URLE_SEARCH_FAILED, warning, e);
} finally {
closeAdminConnection(ld);
}
return userList;
}
Also used :
FinderException(org.apache.directory.fortress.core.FinderException)
CursorException(org.apache.directory.api.ldap.model.cursor.CursorException)
ArrayList(java.util.ArrayList)
SearchCursor(org.apache.directory.api.ldap.model.cursor.SearchCursor)
LdapException(org.apache.directory.api.ldap.model.exception.LdapException)
LdapConnection(org.apache.directory.ldap.client.api.LdapConnection)
Example 28 with FinderException
use of org.apache.directory.fortress.core.FinderException in project directory-fortress-core by apache.
the class UserDAO method getAssignedUsers.
/**
* @param role
* @param roleConstraint
* @return
* @throws FinderException
*/
List<User> getAssignedUsers(Role role, RoleConstraint roleConstraint) throws FinderException {
List<User> userList = new ArrayList<>();
LdapConnection ld = null;
String userRoot = getRootDn(role.getContextId(), GlobalIds.USER_ROOT);
try {
String roleVal = encodeSafeText(role.getName(), GlobalIds.USERID_LEN);
StringBuilder filterbuf = new StringBuilder();
filterbuf.append(GlobalIds.FILTER_PREFIX);
filterbuf.append(USERS_AUX_OBJECT_CLASS_NAME);
filterbuf.append(")(");
filterbuf.append(GlobalIds.USER_ROLE_ASSIGN);
filterbuf.append("=");
filterbuf.append(roleVal);
filterbuf.append(")");
if (roleConstraint != null) {
filterbuf.append("(");
filterbuf.append(GlobalIds.USER_ROLE_DATA);
filterbuf.append("=");
filterbuf.append(roleConstraint.getRawData(new UserRole(role.getName())));
filterbuf.append(")");
}
filterbuf.append(")");
ld = getAdminConnection();
SearchCursor searchResults = search(ld, userRoot, SearchScope.ONELEVEL, filterbuf.toString(), defaultAtrs, false, GlobalIds.BATCH_SIZE);
long sequence = 0;
while (searchResults.next()) {
userList.add(unloadLdapEntry(searchResults.getEntry(), sequence++, role.getContextId()));
}
} catch (LdapException e) {
String warning = "getAssignedUsers role name [" + role.getName() + "] caught LDAPException=" + e.getMessage();
throw new FinderException(GlobalErrIds.URLE_SEARCH_FAILED, warning, e);
} catch (CursorException e) {
String warning = "getAssignedUsers role name [" + role.getName() + "] caught LDAPException=" + e.getMessage();
throw new FinderException(GlobalErrIds.URLE_SEARCH_FAILED, warning, e);
} finally {
closeAdminConnection(ld);
}
return userList;
}
Also used :
FinderException(org.apache.directory.fortress.core.FinderException)
User(org.apache.directory.fortress.core.model.User)
UserRole(org.apache.directory.fortress.core.model.UserRole)
CursorException(org.apache.directory.api.ldap.model.cursor.CursorException)
ArrayList(java.util.ArrayList)
SearchCursor(org.apache.directory.api.ldap.model.cursor.SearchCursor)
LdapException(org.apache.directory.api.ldap.model.exception.LdapException)
LdapConnection(org.apache.directory.ldap.client.api.LdapConnection)
Example 29 with FinderException
use of org.apache.directory.fortress.core.FinderException in project directory-fortress-core by apache.
the class UserDAO method findUsers.
/**
* @param ou
* @return
* @throws FinderException
*/
List<User> findUsers(OrgUnit ou, boolean limitSize) throws FinderException {
List<User> userList = new ArrayList<>();
LdapConnection ld = null;
String userRoot = getRootDn(ou.getContextId(), GlobalIds.USER_ROOT);
try {
String szOu = encodeSafeText(ou.getName(), GlobalIds.OU_LEN);
StringBuilder filterbuf = new StringBuilder();
filterbuf.append(GlobalIds.FILTER_PREFIX);
filterbuf.append(Config.getInstance().getProperty(USER_OBJECT_CLASS));
filterbuf.append(")(");
filterbuf.append(SchemaConstants.OU_AT);
filterbuf.append("=");
filterbuf.append(szOu);
filterbuf.append("))");
int maxLimit;
if (limitSize) {
maxLimit = 10;
} else {
maxLimit = 0;
}
ld = getAdminConnection();
SearchCursor searchResults = search(ld, userRoot, SearchScope.ONELEVEL, filterbuf.toString(), defaultAtrs, false, maxLimit);
long sequence = 0;
while (searchResults.next()) {
userList.add(unloadLdapEntry(searchResults.getEntry(), sequence++, ou.getContextId()));
}
} catch (LdapException e) {
String warning = "findUsers caught LDAPException=" + e.getMessage();
throw new FinderException(GlobalErrIds.USER_SEARCH_FAILED, warning, e);
} catch (CursorException e) {
String warning = "findUsers caught CursorException=" + e.getMessage();
throw new FinderException(GlobalErrIds.USER_SEARCH_FAILED, warning, e);
} finally {
closeAdminConnection(ld);
}
return userList;
}
Also used :
FinderException(org.apache.directory.fortress.core.FinderException)
User(org.apache.directory.fortress.core.model.User)
CursorException(org.apache.directory.api.ldap.model.cursor.CursorException)
ArrayList(java.util.ArrayList)
SearchCursor(org.apache.directory.api.ldap.model.cursor.SearchCursor)
LdapException(org.apache.directory.api.ldap.model.exception.LdapException)
RoleConstraint(org.apache.directory.fortress.core.model.RoleConstraint)
LdapConnection(org.apache.directory.ldap.client.api.LdapConnection)
Example 30 with FinderException
use of org.apache.directory.fortress.core.FinderException in project directory-fortress-core by apache.
the class UserDAO method deassign.
/**
* @param uRole
* @return
* @throws UpdateException
* @throws FinderException
*/
String deassign(UserAdminRole uRole) throws UpdateException, FinderException {
LdapConnection ld = null;
String userDn = getDn(uRole.getUserId(), uRole.getContextId());
try {
// read the user's ARBAC roles to locate record. Need the raw data before attempting removal:
User user = new User(uRole.getUserId());
user.setContextId(uRole.getContextId());
List<UserAdminRole> roles = getUserAdminRoles(user);
int indx = -1;
// Does the user have any roles assigned?
if (roles != null) {
// function call will set index to -1 if name not found:
indx = roles.indexOf(uRole);
// Is the targeted name assigned to user?
if (indx > -1) {
// Retrieve the targeted name:
UserRole fRole = roles.get(indx);
// delete the name assignment attribute using the raw name data:
List<Modification> mods = new ArrayList<Modification>();
mods.add(new DefaultModification(ModificationOperation.REMOVE_ATTRIBUTE, GlobalIds.USER_ADMINROLE_DATA, fRole.getRawData()));
mods.add(new DefaultModification(ModificationOperation.REMOVE_ATTRIBUTE, GlobalIds.USER_ADMINROLE_ASSIGN, fRole.getName()));
ld = getAdminConnection();
modify(ld, userDn, mods, uRole);
}
}
// target name not found:
if (indx == -1) {
// The user does not have the target name assigned,
String warning = "deassign userId [" + uRole.getUserId() + "] name [" + uRole.getName() + "] " + "assignment does not exist.";
throw new FinderException(GlobalErrIds.ARLE_DEASSIGN_NOT_EXIST, warning);
}
} catch (LdapException e) {
String warning = "deassign userId [" + uRole.getUserId() + "] name [" + uRole.getName() + "] caught " + "LDAPException=" + e.getMessage();
throw new UpdateException(GlobalErrIds.ARLE_DEASSIGN_FAILED, warning, e);
} finally {
closeAdminConnection(ld);
}
return userDn;
}
Also used :
DefaultModification(org.apache.directory.api.ldap.model.entry.DefaultModification)
Modification(org.apache.directory.api.ldap.model.entry.Modification)
User(org.apache.directory.fortress.core.model.User)
DefaultModification(org.apache.directory.api.ldap.model.entry.DefaultModification)
UserAdminRole(org.apache.directory.fortress.core.model.UserAdminRole)
ArrayList(java.util.ArrayList)
RoleConstraint(org.apache.directory.fortress.core.model.RoleConstraint)
FinderException(org.apache.directory.fortress.core.FinderException)
UserRole(org.apache.directory.fortress.core.model.UserRole)
UpdateException(org.apache.directory.fortress.core.UpdateException)
LdapException(org.apache.directory.api.ldap.model.exception.LdapException)
LdapConnection(org.apache.directory.ldap.client.api.LdapConnection)
Aggregations
FinderException (org.apache.directory.fortress.core.FinderException)80
LdapException (org.apache.directory.api.ldap.model.exception.LdapException)72
LdapConnection (org.apache.directory.ldap.client.api.LdapConnection)72
ArrayList (java.util.ArrayList)49
CursorException (org.apache.directory.api.ldap.model.cursor.CursorException)48
SearchCursor (org.apache.directory.api.ldap.model.cursor.SearchCursor)48
Entry (org.apache.directory.api.ldap.model.entry.Entry)22
DefaultEntry (org.apache.directory.api.ldap.model.entry.DefaultEntry)21
LdapNoSuchObjectException (org.apache.directory.api.ldap.model.exception.LdapNoSuchObjectException)17
Permission (org.apache.directory.fortress.core.model.Permission)10
User (org.apache.directory.fortress.core.model.User)8
SecurityException (org.apache.directory.fortress.core.SecurityException)7
DefaultModification (org.apache.directory.api.ldap.model.entry.DefaultModification)6
Modification (org.apache.directory.api.ldap.model.entry.Modification)6
UpdateException (org.apache.directory.fortress.core.UpdateException)6
Role (org.apache.directory.fortress.core.model.Role)6
UserRole (org.apache.directory.fortress.core.model.UserRole)6
OrgUnit (org.apache.directory.fortress.core.model.OrgUnit)5
AdminRole (org.apache.directory.fortress.core.model.AdminRole)4
RoleConstraint (org.apache.directory.fortress.core.model.RoleConstraint)4
