summaryrefslogtreecommitdiffstats
path: root/extensions/source/config/ldap
diff options
context:
space:
mode:
authorDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-27 16:51:28 +0000
committerDaniel Baumann <daniel.baumann@progress-linux.org>2024-04-27 16:51:28 +0000
commit940b4d1848e8c70ab7642901a68594e8016caffc (patch)
treeeb72f344ee6c3d9b80a7ecc079ea79e9fba8676d /extensions/source/config/ldap
parentInitial commit. (diff)
downloadlibreoffice-upstream.tar.xz
libreoffice-upstream.zip
Adding upstream version 1:7.0.4.upstream/1%7.0.4upstream
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to 'extensions/source/config/ldap')
-rw-r--r--extensions/source/config/ldap/componentdef.cxx57
-rw-r--r--extensions/source/config/ldap/ldapaccess.cxx289
-rw-r--r--extensions/source/config/ldap/ldapaccess.hxx135
-rw-r--r--extensions/source/config/ldap/ldapbe2.component25
-rw-r--r--extensions/source/config/ldap/ldapuserprofilebe.cxx231
-rw-r--r--extensions/source/config/ldap/ldapuserprofilebe.hxx128
6 files changed, 865 insertions, 0 deletions
diff --git a/extensions/source/config/ldap/componentdef.cxx b/extensions/source/config/ldap/componentdef.cxx
new file mode 100644
index 000000000..02320f7cb
--- /dev/null
+++ b/extensions/source/config/ldap/componentdef.cxx
@@ -0,0 +1,57 @@
+/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
+/*
+ * This file is part of the LibreOffice project.
+ *
+ * This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * This file incorporates work covered by the following license notice:
+ *
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed
+ * with this work for additional information regarding copyright
+ * ownership. The ASF licenses this file to you under the Apache
+ * License, Version 2.0 (the "License"); you may not use this file
+ * except in compliance with the License. You may obtain a copy of
+ * the License at http://www.apache.org/licenses/LICENSE-2.0 .
+ */
+
+
+#include "ldapuserprofilebe.hxx"
+#include <cppuhelper/implementationentry.hxx>
+
+using namespace extensions::config::ldap ;
+
+
+static uno::Reference<uno::XInterface> createLdapUserProfileBe(
+ const uno::Reference<uno::XComponentContext>& aContext) {
+ return * new LdapUserProfileBe(aContext) ;
+}
+
+
+static const cppu::ImplementationEntry kImplementations_entries[] =
+{
+ {
+ createLdapUserProfileBe,
+ LdapUserProfileBe::getLdapUserProfileBeName,
+ LdapUserProfileBe::getLdapUserProfileBeServiceNames,
+ cppu::createSingleComponentFactory,
+ nullptr,
+ 0
+ },
+ { nullptr, nullptr, nullptr, nullptr, nullptr, 0 }
+} ;
+
+
+extern "C" SAL_DLLPUBLIC_EXPORT void * ldapbe2_component_getFactory(const char *aImplementationName,
+ void *aServiceManager,
+ void *aRegistryKey) {
+ return cppu::component_getFactoryHelper(aImplementationName,
+ aServiceManager,
+ aRegistryKey,
+ kImplementations_entries) ;
+}
+
+
+/* vim:set shiftwidth=4 softtabstop=4 expandtab: */
diff --git a/extensions/source/config/ldap/ldapaccess.cxx b/extensions/source/config/ldap/ldapaccess.cxx
new file mode 100644
index 000000000..7e35408b3
--- /dev/null
+++ b/extensions/source/config/ldap/ldapaccess.cxx
@@ -0,0 +1,289 @@
+/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
+/*
+ * This file is part of the LibreOffice project.
+ *
+ * This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * This file incorporates work covered by the following license notice:
+ *
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed
+ * with this work for additional information regarding copyright
+ * ownership. The ASF licenses this file to you under the Apache
+ * License, Version 2.0 (the "License"); you may not use this file
+ * except in compliance with the License. You may obtain a copy of
+ * the License at http://www.apache.org/licenses/LICENSE-2.0 .
+ */
+
+
+#include "ldapaccess.hxx"
+
+#include <osl/diagnose.h>
+#include <o3tl/char16_t2wchar_t.hxx>
+
+#include <com/sun/star/ldap/LdapConnectionException.hpp>
+
+
+namespace extensions::config::ldap {
+
+
+typedef int LdapErrCode;
+
+struct LdapMessageHolder
+{
+ LdapMessageHolder() : msg(nullptr) {}
+ ~LdapMessageHolder()
+ {
+ if (msg)
+ ldap_msgfree(msg);
+ }
+ LdapMessageHolder(const LdapMessageHolder&) = delete;
+ LdapMessageHolder& operator=(const LdapMessageHolder&) = delete;
+
+ LDAPMessage * msg;
+};
+
+LdapConnection::~LdapConnection()
+{
+ if (isValid()) disconnect();
+}
+
+
+void LdapConnection::disconnect()
+{
+ if (mConnection != nullptr)
+ {
+ ldap_unbind_s(mConnection) ;
+ mConnection = nullptr;
+ }
+}
+
+
+static void checkLdapReturnCode(const char *aOperation,
+ LdapErrCode aRetCode)
+{
+ if (aRetCode == LDAP_SUCCESS) { return ; }
+
+ OUString message;
+
+ if (aOperation != nullptr)
+ {
+ message += OUString::createFromAscii(aOperation) + ": ";
+ }
+ message += OUString::createFromAscii(ldap_err2string(aRetCode)) + " (" ;
+
+#ifndef LDAP_OPT_SIZELIMIT // for use with OpenLDAP
+ char* stub = nullptr;
+ ldap_get_lderrno(aConnection, NULL, &stub) ;
+ if (stub != nullptr)
+ {
+ message += OUString::createFromAscii(stub) ;
+ // It would seem the message returned is actually
+ // not a copy of a string but rather some static
+ // string itself. At any rate freeing it seems to
+ // cause some undue problems at least on Windows.
+ // This call is thus disabled for the moment.
+ //ldap_memfree(stub) ;
+ }
+ else
+#endif
+ { message += "No additional information"; }
+
+ message += ")" ;
+ throw ldap::LdapGenericException(message, nullptr, aRetCode) ;
+}
+
+void LdapConnection::connectSimple(const LdapDefinition& aDefinition)
+{
+ OSL_ENSURE(!isValid(), "Re-connecting to an LDAP connection that is already established");
+ if (isValid()) disconnect();
+
+ mLdapDefinition = aDefinition;
+ connectSimple();
+}
+
+void LdapConnection::connectSimple()
+{
+ if (isValid())
+ return;
+
+ // Connect to the server
+ initConnection() ;
+ // Set Protocol V3
+ int version = LDAP_VERSION3;
+ ldap_set_option(mConnection,
+ LDAP_OPT_PROTOCOL_VERSION,
+ &version);
+
+#ifdef LDAP_X_OPT_CONNECT_TIMEOUT // OpenLDAP doesn't support this and the func
+ /* timeout is specified in milliseconds -> 4 seconds*/
+ int timeout = 4000;
+#ifdef _WIN32
+ ldap_set_optionW( mConnection,
+ LDAP_X_OPT_CONNECT_TIMEOUT,
+ &timeout );
+#else
+ ldap_set_option( mConnection,
+ LDAP_X_OPT_CONNECT_TIMEOUT,
+ &timeout );
+#endif
+#endif
+
+ // Do the bind
+#ifdef _WIN32
+ LdapErrCode retCode = ldap_simple_bind_sW(mConnection,
+ const_cast<PWSTR>(o3tl::toW(mLdapDefinition.mAnonUser.getStr())),
+ const_cast<PWSTR>(o3tl::toW(mLdapDefinition.mAnonCredentials.getStr())) );
+#else
+ LdapErrCode retCode = ldap_simple_bind_s(mConnection,
+ OUStringToOString( mLdapDefinition.mAnonUser, RTL_TEXTENCODING_UTF8 ).getStr(),
+ OUStringToOString( mLdapDefinition.mAnonCredentials, RTL_TEXTENCODING_UTF8 ).getStr()) ;
+#endif
+
+ checkLdapReturnCode("SimpleBind", retCode) ;
+}
+
+void LdapConnection::initConnection()
+{
+ if (mLdapDefinition.mServer.isEmpty())
+ {
+ throw ldap::LdapConnectionException("Cannot initialise connection to LDAP: No server specified.");
+ }
+
+ if (mLdapDefinition.mPort == 0) mLdapDefinition.mPort = LDAP_PORT;
+
+#ifdef _WIN32
+ mConnection = ldap_initW(const_cast<PWSTR>(o3tl::toW(mLdapDefinition.mServer.getStr())),
+ mLdapDefinition.mPort) ;
+#else
+ mConnection = ldap_init(OUStringToOString( mLdapDefinition.mServer, RTL_TEXTENCODING_UTF8 ).getStr(),
+ mLdapDefinition.mPort) ;
+#endif
+ if (mConnection == nullptr)
+ {
+ throw ldap::LdapConnectionException(
+ "Cannot initialise connection to LDAP server "
+ + mLdapDefinition.mServer + ":" + OUString::number(mLdapDefinition.mPort));
+ }
+}
+
+ void LdapConnection::getUserProfile(
+ const OUString& aUser, LdapData * data)
+{
+ OSL_ASSERT(data != nullptr);
+ if (!isValid()) { connectSimple(); }
+
+ OUString aUserDn =findUserDn( aUser );
+
+ LdapMessageHolder result;
+#ifdef _WIN32
+ LdapErrCode retCode = ldap_search_sW(mConnection,
+ const_cast<PWSTR>(o3tl::toW(aUserDn.getStr())),
+ LDAP_SCOPE_BASE,
+ const_cast<PWSTR>( L"(objectclass=*)" ),
+ nullptr,
+ 0, // Attributes + values
+ &result.msg) ;
+#else
+ LdapErrCode retCode = ldap_search_s(mConnection,
+ OUStringToOString( aUserDn, RTL_TEXTENCODING_UTF8 ).getStr(),
+ LDAP_SCOPE_BASE,
+ "(objectclass=*)",
+ nullptr,
+ 0, // Attributes + values
+ &result.msg) ;
+#endif
+ checkLdapReturnCode("getUserProfile", retCode) ;
+
+ BerElement * ptr;
+#ifdef _WIN32
+ PWCHAR attr = ldap_first_attributeW(mConnection, result.msg, &ptr);
+ while (attr) {
+ PWCHAR * values = ldap_get_valuesW(mConnection, result.msg, attr);
+ if (values) {
+ const OUString aAttr( o3tl::toU( attr ) );
+ const OUString aValues( o3tl::toU( *values ) );
+ data->emplace( aAttr, aValues );
+ ldap_value_freeW(values);
+ }
+ attr = ldap_next_attributeW(mConnection, result.msg, ptr);
+#else
+ char * attr = ldap_first_attribute(mConnection, result.msg, &ptr);
+ while (attr) {
+ char ** values = ldap_get_values(mConnection, result.msg, attr);
+ if (values) {
+ data->emplace(
+ OStringToOUString(attr, RTL_TEXTENCODING_ASCII_US),
+ OStringToOUString(*values, RTL_TEXTENCODING_UTF8));
+ ldap_value_free(values);
+ }
+ attr = ldap_next_attribute(mConnection, result.msg, ptr);
+#endif
+ }
+}
+
+ OUString LdapConnection::findUserDn(const OUString& aUser)
+{
+ if (!isValid()) { connectSimple(); }
+
+ if (aUser.isEmpty())
+ {
+ throw lang::IllegalArgumentException(
+ "LdapConnection::findUserDn -User id is empty",
+ nullptr, 0) ;
+ }
+
+ OUString filter = "(&(objectclass="
+ + mLdapDefinition.mUserObjectClass
+ + ")("
+ + mLdapDefinition.mUserUniqueAttr
+ + "="
+ + aUser
+ + "))";
+
+ LdapMessageHolder result;
+#ifdef _WIN32
+ PWCHAR attributes [2] = { const_cast<PWCHAR>( L"1.1" ), nullptr };
+ LdapErrCode retCode = ldap_search_sW(mConnection,
+ const_cast<PWSTR>(o3tl::toW(mLdapDefinition.mBaseDN.getStr())),
+ LDAP_SCOPE_SUBTREE,
+ const_cast<PWSTR>(o3tl::toW(filter.getStr())), attributes, 0, &result.msg) ;
+#else
+ char * attributes [2] = { const_cast<char *>(LDAP_NO_ATTRS), nullptr };
+ LdapErrCode retCode = ldap_search_s(mConnection,
+ OUStringToOString( mLdapDefinition.mBaseDN, RTL_TEXTENCODING_UTF8 ).getStr(),
+ LDAP_SCOPE_SUBTREE,
+ OUStringToOString( filter, RTL_TEXTENCODING_UTF8 ).getStr(), attributes, 0, &result.msg) ;
+#endif
+ checkLdapReturnCode("FindUserDn", retCode) ;
+ OUString userDn ;
+ LDAPMessage *entry = ldap_first_entry(mConnection, result.msg) ;
+
+ if (entry != nullptr)
+ {
+#ifdef _WIN32
+ PWCHAR charsDn = ldap_get_dnW(mConnection, entry) ;
+
+ userDn = OUString( o3tl::toU( charsDn ) );
+ ldap_memfreeW(charsDn) ;
+#else
+ char *charsDn = ldap_get_dn(mConnection, entry) ;
+
+ userDn = OStringToOUString( charsDn, RTL_TEXTENCODING_UTF8 );
+ ldap_memfree(charsDn) ;
+#endif
+ }
+ else
+ {
+ OSL_FAIL( "LdapConnection::findUserDn-could not get DN for User ");
+ }
+
+ return userDn ;
+}
+
+
+} // extensions::config::ldap
+
+/* vim:set shiftwidth=4 softtabstop=4 expandtab: */
diff --git a/extensions/source/config/ldap/ldapaccess.hxx b/extensions/source/config/ldap/ldapaccess.hxx
new file mode 100644
index 000000000..34ba5a04f
--- /dev/null
+++ b/extensions/source/config/ldap/ldapaccess.hxx
@@ -0,0 +1,135 @@
+/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
+/*
+ * This file is part of the LibreOffice project.
+ *
+ * This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * This file incorporates work covered by the following license notice:
+ *
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed
+ * with this work for additional information regarding copyright
+ * ownership. The ASF licenses this file to you under the Apache
+ * License, Version 2.0 (the "License"); you may not use this file
+ * except in compliance with the License. You may obtain a copy of
+ * the License at http://www.apache.org/licenses/LICENSE-2.0 .
+ */
+
+#ifndef INCLUDED_EXTENSIONS_SOURCE_CONFIG_LDAP_LDAPACCESS_HXX
+#define INCLUDED_EXTENSIONS_SOURCE_CONFIG_LDAP_LDAPACCESS_HXX
+
+#include <sal/config.h>
+
+#include <map>
+
+#ifdef _WIN32
+#if !defined WIN32_LEAN_AND_MEAN
+# define WIN32_LEAN_AND_MEAN
+#endif
+#include <windows.h>
+#include <winldap.h>
+#else // !defined _WIN32
+#include <ldap.h>
+#endif // _WIN32
+
+#include <com/sun/star/ldap/LdapGenericException.hpp>
+
+#include <com/sun/star/lang/IllegalArgumentException.hpp>
+
+namespace extensions::config::ldap {
+
+namespace uno = css::uno ;
+namespace lang = css::lang ;
+namespace ldap = css::ldap ;
+
+struct LdapUserProfile;
+
+
+/** Struct containing the information on LDAP connection */
+struct LdapDefinition
+{
+ /** LDAP server name */
+ OUString mServer ;
+ /** LDAP server port number */
+ sal_Int32 mPort ;
+ /** Repository base DN */
+ OUString mBaseDN ;
+ /** DN to use for "anonymous" connection */
+ OUString mAnonUser ;
+ /** Credentials to use for "anonymous" connection */
+ OUString mAnonCredentials ;
+ /** User Entity Object Class */
+ OUString mUserObjectClass;
+ /** User Entity Unique Attribute */
+ OUString mUserUniqueAttr;
+
+ LdapDefinition()
+ : mPort(0)
+ {
+ }
+};
+
+typedef std::map< OUString, OUString > LdapData; // key/value pairs
+
+/** Class encapsulating all LDAP functionality */
+class LdapConnection
+{
+ friend struct LdapMessageHolder;
+public:
+
+ /** Default constructor */
+ LdapConnection() : mConnection(nullptr),mLdapDefinition() {}
+ /** Destructor, releases the connection */
+ ~LdapConnection() ;
+ /** Make connection to LDAP server
+ @throws ldap::LdapConnectionException
+ @throws ldap::LdapGenericException
+ */
+ void connectSimple(const LdapDefinition& aDefinition);
+
+ /**
+ Gets LdapUserProfile from LDAP repository for specified user
+ @param aUser name of logged on user
+ @param aUserProfileMap Map containing LDAP->00o mapping
+ @param aUserProfile struct for holding OOo values
+
+ @throws css::ldap::LdapGenericException
+ if an LDAP error occurs.
+ */
+ void getUserProfile(const OUString& aUser, LdapData * data);
+
+ /** finds DN of user
+ @return DN of User
+ @throws lang::IllegalArgumentException
+ @throws ldap::LdapConnectionException
+ @throws ldap::LdapGenericException
+ */
+ OUString findUserDn(const OUString& aUser);
+
+private:
+ /// @throws ldap::LdapConnectionException
+ void initConnection();
+ void disconnect();
+ /**
+ Indicates whether the connection is in a valid state.
+ @return sal_True if connection is valid, sal_False otherwise
+ */
+ bool isValid() const { return mConnection != nullptr ; }
+
+ /// @throws ldap::LdapConnectionException
+ /// @throws ldap::LdapGenericException
+ void connectSimple();
+
+ /** LDAP connection object */
+ LDAP* mConnection ;
+ LdapDefinition mLdapDefinition;
+} ;
+
+
+}
+
+#endif // EXTENSIONS_CONFIG_LDAP_LDAPUSERPROFILE_HXX_
+
+/* vim:set shiftwidth=4 softtabstop=4 expandtab: */
diff --git a/extensions/source/config/ldap/ldapbe2.component b/extensions/source/config/ldap/ldapbe2.component
new file mode 100644
index 000000000..7e07ba415
--- /dev/null
+++ b/extensions/source/config/ldap/ldapbe2.component
@@ -0,0 +1,25 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+ * This file is part of the LibreOffice project.
+ *
+ * This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * This file incorporates work covered by the following license notice:
+ *
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed
+ * with this work for additional information regarding copyright
+ * ownership. The ASF licenses this file to you under the Apache
+ * License, Version 2.0 (the "License"); you may not use this file
+ * except in compliance with the License. You may obtain a copy of
+ * the License at http://www.apache.org/licenses/LICENSE-2.0 .
+ -->
+
+<component loader="com.sun.star.loader.SharedLibrary" environment="@CPPU_ENV@"
+ prefix="ldapbe2" xmlns="http://openoffice.org/2010/uno-components">
+ <implementation name="com.sun.star.comp.configuration.backend.LdapUserProfileBe">
+ <service name="com.sun.star.configuration.backend.LdapUserProfileBe"/>
+ </implementation>
+</component>
diff --git a/extensions/source/config/ldap/ldapuserprofilebe.cxx b/extensions/source/config/ldap/ldapuserprofilebe.cxx
new file mode 100644
index 000000000..897965ab6
--- /dev/null
+++ b/extensions/source/config/ldap/ldapuserprofilebe.cxx
@@ -0,0 +1,231 @@
+/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
+/*
+ * This file is part of the LibreOffice project.
+ *
+ * This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * This file incorporates work covered by the following license notice:
+ *
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed
+ * with this work for additional information regarding copyright
+ * ownership. The ASF licenses this file to you under the Apache
+ * License, Version 2.0 (the "License"); you may not use this file
+ * except in compliance with the License. You may obtain a copy of
+ * the License at http://www.apache.org/licenses/LICENSE-2.0 .
+ */
+
+
+#include "ldapaccess.hxx"
+#include "ldapuserprofilebe.hxx"
+#include <sal/log.hxx>
+#include <tools/diagnose_ex.h>
+
+#include <rtl/instance.hxx>
+#include <com/sun/star/beans/NamedValue.hpp>
+#include <com/sun/star/beans/Optional.hpp>
+#include <com/sun/star/configuration/theDefaultProvider.hpp>
+#include <comphelper/scopeguard.hxx>
+#include <cppuhelper/supportsservice.hxx>
+#include <osl/security.hxx>
+
+
+namespace extensions::config::ldap {
+
+LdapUserProfileBe::LdapUserProfileBe( const uno::Reference<uno::XComponentContext>& xContext)
+: LdapProfileMutexHolder(),
+ BackendBase(mMutex)
+{
+ LdapDefinition aDefinition;
+ OUString loggedOnUser;
+ // true initially to handle reentrant call; will become false if readLdapConfiguration fails
+ bool bHaveLdapConfiguration = true;
+
+ // This whole rigmarole is to prevent an infinite recursion where reading
+ // the configuration for the backend would create another instance of the
+ // backend, which would try and read the configuration which would...
+ {
+ osl::Mutex & aInitMutex = rtl::Static< osl::Mutex, LdapUserProfileBe >::get();
+ osl::MutexGuard aInitGuard(aInitMutex);
+
+ static bool bReentrantCall; // = false
+ OSL_ENSURE(!bReentrantCall, "configuration: Ldap Backend constructor called reentrantly - probably a registration error.");
+
+ if (!bReentrantCall)
+ {
+ bReentrantCall = true ;
+ comphelper::ScopeGuard aReentrantCallGuard([]() { bReentrantCall = false; });
+ // Don't throw on fail: this will crash if LDAP is misconfigured, and user opens
+ // Expert Configuration dialog. Instead, just don't fill data_, which will make the
+ // backend return empty values. This happens in SvtUserOptions::Impl::GetValue_Impl
+ // anyway even in throwing scenario, but doing it here also improves performance
+ // because of avoiding repeated attempts to create the backend.
+ bHaveLdapConfiguration = readLdapConfiguration(
+ xContext, &aDefinition, &loggedOnUser);
+ if (!bHaveLdapConfiguration)
+ SAL_WARN("extensions.config", "LdapUserProfileBackend: LDAP not configured");
+ }
+ }
+
+ if (bHaveLdapConfiguration)
+ {
+ LdapConnection connection;
+ connection.connectSimple(aDefinition);
+ connection.getUserProfile(loggedOnUser, &data_);
+ }
+}
+
+LdapUserProfileBe::~LdapUserProfileBe()
+{
+}
+
+
+bool LdapUserProfileBe::readLdapConfiguration(
+ css::uno::Reference< css::uno::XComponentContext > const & context,
+ LdapDefinition * definition, OUString * loggedOnUser)
+{
+ OSL_ASSERT(context.is() && definition != nullptr && loggedOnUser != nullptr);
+ const OUString kReadOnlyViewService("com.sun.star.configuration.ConfigurationAccess") ;
+ const OUString kComponent("org.openoffice.LDAP/UserDirectory");
+ const OUString kServerDefinition("ServerDefinition");
+ const OUString kServer("Server");
+ const OUString kPort("Port");
+ const OUString kBaseDN("BaseDN");
+ const OUString kUser("SearchUser");
+ const OUString kPassword("SearchPassword");
+ const OUString kUserObjectClass("UserObjectClass");
+ const OUString kUserUniqueAttr("UserUniqueAttribute");
+
+ uno::Reference< XInterface > xIface;
+ try
+ {
+ uno::Reference< lang::XMultiServiceFactory > xCfgProvider(
+ css::configuration::theDefaultProvider::get(context));
+
+ css::beans::NamedValue aPath("nodepath", uno::makeAny(kComponent) );
+
+ uno::Sequence< uno::Any > aArgs(1);
+ aArgs[0] <<= aPath;
+
+ xIface = xCfgProvider->createInstanceWithArguments(kReadOnlyViewService, aArgs);
+
+ uno::Reference<container::XNameAccess > xAccess(xIface, uno::UNO_QUERY_THROW);
+ xAccess->getByName(kServerDefinition) >>= xIface;
+
+ uno::Reference<container::XNameAccess > xChildAccess(xIface, uno::UNO_QUERY_THROW);
+
+ if (!getLdapStringParam(xChildAccess, kServer, definition->mServer))
+ return false;
+ if (!getLdapStringParam(xChildAccess, kBaseDN, definition->mBaseDN))
+ return false;
+
+ definition->mPort=0;
+ xChildAccess->getByName(kPort) >>= definition->mPort ;
+ if (definition->mPort == 0)
+ return false;
+
+ if (!getLdapStringParam(xAccess, kUserObjectClass, definition->mUserObjectClass))
+ return false;
+ if (!getLdapStringParam(xAccess, kUserUniqueAttr, definition->mUserUniqueAttr))
+ return false;
+
+ getLdapStringParam(xAccess, kUser, definition->mAnonUser);
+ getLdapStringParam(xAccess, kPassword, definition->mAnonCredentials);
+ }
+ catch (const uno::Exception&)
+ {
+ TOOLS_WARN_EXCEPTION("extensions.config", "LdapUserProfileBackend: access to configuration data failed");
+ return false;
+ }
+
+ osl::Security aSecurityContext;
+ if (!aSecurityContext.getUserName(*loggedOnUser))
+ SAL_WARN("extensions.config", "LdapUserProfileBackend - could not get Logged on user from system");
+
+ sal_Int32 nIndex = loggedOnUser->indexOf('/');
+ if (nIndex > 0)
+ *loggedOnUser = loggedOnUser->copy(nIndex+1);
+
+ return true;
+}
+
+
+bool LdapUserProfileBe::getLdapStringParam(
+ uno::Reference<container::XNameAccess> const & xAccess,
+ const OUString& aLdapSetting,
+ OUString& aServerParameter)
+{
+ xAccess->getByName(aLdapSetting) >>= aServerParameter;
+
+ return !aServerParameter.isEmpty();
+}
+
+void LdapUserProfileBe::setPropertyValue(
+ OUString const &, css::uno::Any const &)
+{
+ throw css::lang::IllegalArgumentException(
+ "setPropertyValue not supported",
+ static_cast< cppu::OWeakObject * >(this), -1);
+}
+
+css::uno::Any LdapUserProfileBe::getPropertyValue(
+ OUString const & PropertyName)
+{
+ for (sal_Int32 i = 0;;) {
+ sal_Int32 j = PropertyName.indexOf(',', i);
+ if (j == -1) {
+ j = PropertyName.getLength();
+ }
+ if (j == i) {
+ throw css::beans::UnknownPropertyException(
+ PropertyName, static_cast< cppu::OWeakObject * >(this));
+ }
+ LdapData::iterator k(data_.find(PropertyName.copy(i, j - i)));
+ if (k != data_.end()) {
+ return css::uno::makeAny(
+ css::beans::Optional< css::uno::Any >(
+ true, css::uno::makeAny(k->second)));
+ }
+ if (j == PropertyName.getLength()) {
+ break;
+ }
+ i = j + 1;
+ }
+ return css::uno::makeAny(css::beans::Optional< css::uno::Any >());
+}
+
+
+OUString LdapUserProfileBe::getLdapUserProfileBeName() {
+ return "com.sun.star.comp.configuration.backend.LdapUserProfileBe";
+}
+
+
+OUString SAL_CALL LdapUserProfileBe::getImplementationName()
+{
+ return getLdapUserProfileBeName() ;
+}
+
+
+uno::Sequence<OUString> LdapUserProfileBe::getLdapUserProfileBeServiceNames()
+{
+ uno::Sequence<OUString> aServices { "com.sun.star.configuration.backend.LdapUserProfileBe" };
+ return aServices ;
+}
+
+sal_Bool SAL_CALL LdapUserProfileBe::supportsService(const OUString& aServiceName)
+{
+ return cppu::supportsService(this, aServiceName);
+}
+
+uno::Sequence<OUString>
+SAL_CALL LdapUserProfileBe::getSupportedServiceNames()
+{
+ return getLdapUserProfileBeServiceNames() ;
+}
+
+}
+
+
+/* vim:set shiftwidth=4 softtabstop=4 expandtab: */
diff --git a/extensions/source/config/ldap/ldapuserprofilebe.hxx b/extensions/source/config/ldap/ldapuserprofilebe.hxx
new file mode 100644
index 000000000..aaefcd834
--- /dev/null
+++ b/extensions/source/config/ldap/ldapuserprofilebe.hxx
@@ -0,0 +1,128 @@
+/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
+/*
+ * This file is part of the LibreOffice project.
+ *
+ * This Source Code Form is subject to the terms of the Mozilla Public
+ * License, v. 2.0. If a copy of the MPL was not distributed with this
+ * file, You can obtain one at http://mozilla.org/MPL/2.0/.
+ *
+ * This file incorporates work covered by the following license notice:
+ *
+ * Licensed to the Apache Software Foundation (ASF) under one or more
+ * contributor license agreements. See the NOTICE file distributed
+ * with this work for additional information regarding copyright
+ * ownership. The ASF licenses this file to you under the Apache
+ * License, Version 2.0 (the "License"); you may not use this file
+ * except in compliance with the License. You may obtain a copy of
+ * the License at http://www.apache.org/licenses/LICENSE-2.0 .
+ */
+
+#ifndef INCLUDED_EXTENSIONS_SOURCE_CONFIG_LDAP_LDAPUSERPROFILEBE_HXX
+#define INCLUDED_EXTENSIONS_SOURCE_CONFIG_LDAP_LDAPUSERPROFILEBE_HXX
+
+#include <com/sun/star/beans/XPropertySet.hpp>
+#include <com/sun/star/lang/XServiceInfo.hpp>
+#include <com/sun/star/container/XNameAccess.hpp>
+#include <cppuhelper/compbase.hxx>
+
+#include "ldapaccess.hxx"
+
+namespace com::sun::star::uno {
+ class XComponentContext;
+}
+
+namespace extensions::config::ldap {
+
+namespace uno = css::uno ;
+namespace lang = css::lang ;
+namespace container = css::container;
+
+struct LdapDefinition;
+
+typedef cppu::WeakComponentImplHelper<css::beans::XPropertySet,
+ lang::XServiceInfo> BackendBase ;
+
+struct LdapProfileMutexHolder { osl::Mutex mMutex; };
+/**
+ Implements the PlatformBackend service, a specialization of the
+ XPropertySet service for retrieving LDAP user profile
+ configuration settings from an LDAP repository.
+ */
+class LdapUserProfileBe : private LdapProfileMutexHolder, public BackendBase
+{
+ public:
+
+ explicit LdapUserProfileBe(const uno::Reference<uno::XComponentContext>& xContext);
+ virtual ~LdapUserProfileBe() override ;
+
+ // XServiceInfo
+ virtual OUString SAL_CALL
+ getImplementationName( ) override ;
+
+ virtual sal_Bool SAL_CALL
+ supportsService( const OUString& aServiceName ) override ;
+
+ virtual uno::Sequence<OUString> SAL_CALL
+ getSupportedServiceNames( ) override ;
+
+ // XPropertySet
+ virtual css::uno::Reference< css::beans::XPropertySetInfo > SAL_CALL
+ getPropertySetInfo() override
+ { return css::uno::Reference< css::beans::XPropertySetInfo >(); }
+
+ virtual void SAL_CALL setPropertyValue(
+ OUString const &, css::uno::Any const &) override;
+
+ virtual css::uno::Any SAL_CALL getPropertyValue(
+ OUString const & PropertyName) override;
+
+ virtual void SAL_CALL addPropertyChangeListener(
+ OUString const &,
+ css::uno::Reference< css::beans::XPropertyChangeListener > const &) override
+ {}
+
+ virtual void SAL_CALL removePropertyChangeListener(
+ OUString const &,
+ css::uno::Reference< css::beans::XPropertyChangeListener > const &) override
+ {}
+
+ virtual void SAL_CALL addVetoableChangeListener(
+ OUString const &,
+ css::uno::Reference< css::beans::XVetoableChangeListener > const &) override
+ {}
+
+ virtual void SAL_CALL removeVetoableChangeListener(
+ OUString const &,
+ css::uno::Reference< css::beans::XVetoableChangeListener > const &) override
+ {}
+
+ /**
+ Provides the implementation name.
+ @return implementation name
+ */
+ static OUString getLdapUserProfileBeName() ;
+ /**
+ Provides the supported services names
+ @return service names
+ */
+ static uno::Sequence<OUString>
+ getLdapUserProfileBeServiceNames() ;
+
+ private:
+ /** Check if LDAP is configured */
+ static bool readLdapConfiguration(
+ uno::Reference<uno::XComponentContext> const & context,
+ LdapDefinition * definition, OUString * loggedOnUser);
+
+ static bool getLdapStringParam(uno::Reference<container::XNameAccess> const & xAccess,
+ const OUString& aLdapSetting,
+ OUString& aServerParameter);
+
+ LdapData data_;
+} ;
+
+}
+
+#endif // EXTENSIONS_CONFIG_LDAP_LDAPUSERPROFILE_HXX_
+
+/* vim:set shiftwidth=4 softtabstop=4 expandtab: */