1 /* ldapdelete.c - simple program to delete an entry using LDAP */
4 * Copyright 1998-1999 The OpenLDAP Foundation, All Rights Reserved.
5 * COPYING RESTRICTIONS APPLY, see COPYRIGHT file
12 #include <ac/stdlib.h>
15 #include <ac/signal.h>
16 #include <ac/string.h>
17 #include <ac/unistd.h>
22 static char *binddn = NULL;
23 static char *passwd = NULL;
24 static char *ldaphost = NULL;
25 static int ldapport = 0;
27 static int not, verbose, contoper;
30 static int dodelete LDAP_P((
34 static int deletechildren LDAP_P(( LDAP *ld,
38 main( int argc, char **argv )
40 char *usage = "usage: %s [-n] [-v] [-k] [-W] [-M[M]] [-r] [-d debug-level] [-f file] [-h ldaphost] [-P version] [-p ldapport] [-D binddn] [-w passwd] [dn]...\n";
43 int i, rc, authmethod, want_bindpw, version, debug, manageDSAit;
45 not = verbose = contoper = want_bindpw = debug = manageDSAit = 0;
47 authmethod = LDAP_AUTH_SIMPLE;
50 while (( i = getopt( argc, argv, "WMnvkKcrh:P:p:D:w:d:f:" )) != EOF ) {
52 case 'k': /* kerberos bind */
54 authmethod = LDAP_AUTH_KRBV4;
56 fprintf (stderr, "%s was not compiled with Kerberos support\n", argv[0]);
57 fprintf( stderr, usage, argv[0] );
58 return( EXIT_FAILURE );
61 case 'K': /* kerberos bind, part one only */
63 authmethod = LDAP_AUTH_KRBV41;
65 fprintf (stderr, "%s was not compiled with Kerberos support\n", argv[0]);
66 fprintf( stderr, usage, argv[0] );
67 return( EXIT_FAILURE );
70 case 'c': /* continuous operation mode */
73 case 'h': /* ldap host */
74 ldaphost = strdup( optarg );
76 case 'D': /* bind DN */
77 binddn = strdup( optarg );
79 case 'w': /* password */
80 passwd = strdup( optarg );
84 for( p = optarg; *p == '\0'; p++ ) {
89 case 'f': /* read DNs from a file */
90 if (( fp = fopen( optarg, "r" )) == NULL ) {
96 debug |= atoi( optarg );
99 ldapport = atoi( optarg );
101 case 'n': /* print deletes, don't actually do them */
107 case 'v': /* verbose mode */
111 /* enable Manage DSA IT */
118 switch( atoi(optarg) )
121 version = LDAP_VERSION2;
124 version = LDAP_VERSION3;
127 fprintf( stderr, "protocol version should be 2 or 3\n" );
128 fprintf( stderr, usage, argv[0] );
129 return( EXIT_FAILURE );
133 fprintf( stderr, usage, argv[0] );
134 return( EXIT_FAILURE );
139 if ( optind >= argc ) {
145 if( ber_set_option( NULL, LBER_OPT_DEBUG_LEVEL, &debug ) != LBER_OPT_SUCCESS ) {
146 fprintf( stderr, "Could not set LBER_OPT_DEBUG_LEVEL %d\n", debug );
148 if( ldap_set_option( NULL, LDAP_OPT_DEBUG_LEVEL, &debug ) != LDAP_OPT_SUCCESS ) {
149 fprintf( stderr, "Could not set LDAP_OPT_DEBUG_LEVEL %d\n", debug );
154 (void) SIGNAL( SIGPIPE, SIG_IGN );
157 if (( ld = ldap_init( ldaphost, ldapport )) == NULL ) {
158 perror( "ldap_init" );
159 return( EXIT_FAILURE );
163 /* this seems prudent */
164 int deref = LDAP_DEREF_NEVER;
165 ldap_set_option( ld, LDAP_OPT_DEREF, &deref );
168 /* don't chase referrals */
169 ldap_set_option( ld, LDAP_OPT_REFERRALS, LDAP_OPT_OFF );
172 passwd = getpass("Enter LDAP Password: ");
175 ldap_set_option( ld, LDAP_OPT_PROTOCOL_VERSION, &version ) != LDAP_OPT_SUCCESS)
177 fprintf( stderr, "Could not set LDAP_OPT_PROTOCOL_VERSION %d\n", version );
180 if ( ldap_bind_s( ld, binddn, passwd, authmethod ) != LDAP_SUCCESS ) {
181 ldap_perror( ld, "ldap_bind" );
182 return( EXIT_FAILURE );
188 LDAPControl *ctrls[2];
192 c.ldctl_oid = LDAP_CONTROL_MANAGEDSAIT;
193 c.ldctl_value.bv_val = NULL;
194 c.ldctl_value.bv_len = 0;
195 c.ldctl_iscritical = manageDSAit > 1;
197 err = ldap_set_option( ld, LDAP_OPT_SERVER_CONTROLS, &ctrls );
199 if( err != LDAP_OPT_SUCCESS ) {
200 fprintf( stderr, "Could not set Manage DSA IT Control\n" );
201 if( c.ldctl_iscritical ) {
202 exit( EXIT_FAILURE );
209 for ( ; optind < argc; ++optind ) {
210 rc = dodelete( ld, argv[ optind ] );
213 while ((rc == 0 || contoper) && fgets(buf, sizeof(buf), fp) != NULL) {
214 buf[ strlen( buf ) - 1 ] = '\0'; /* remove trailing newline */
215 if ( *buf != '\0' ) {
216 rc = dodelete( ld, buf );
234 printf( "%sdeleting entry \"%s\"\n",
235 (not ? "!" : ""), dn );
240 /* If prune is on, remove a whole subtree. Delete the children of the
241 * DN recursively, then the DN requested.
243 if ( prune ) deletechildren( ld, dn );
244 if (( rc = ldap_delete_s( ld, dn )) != LDAP_SUCCESS ) {
245 ldap_perror( ld, "ldap_delete" );
246 } else if ( verbose ) {
247 printf( "\tremoved\n" );
255 * Delete all the children of an entry recursively until leaf nodes are reached.
258 static int deletechildren( LDAP *ld,
261 LDAPMessage *res, *e;
264 int timeout = 30 * 10000;
266 ldap_set_option( ld, LDAP_OPT_TIMEOUT, &timeout );
267 if ( verbose ) printf ( "deleting children of: %s\n", dn );
269 * Do a one level search at dn for children. For each, delete its children.
271 if ( ldap_search_s( ld, dn, LDAP_SCOPE_ONELEVEL, "objectclass=*", NULL, 0, &res ) == -1 )
273 ldap_perror( ld, "ldap_search" );
274 ldap_get_option( ld, LDAP_OPT_ERROR_NUMBER, &rc );
278 entries = ldap_count_entries( ld, res );
283 for (e = ldap_first_entry( ld, res ), i = 0; e != NULL;
284 e = ldap_next_entry( ld, e ), i++ )
286 if ( (rc = deletechildren( ld, ldap_get_dn( ld, e) )) == -1 )
288 ldap_perror( ld, "ldap_prune" );
293 printf( "\tremoving %s\n", ldap_get_dn( ld, e ) );
295 if ( rc = ldap_delete_s( ld, ldap_get_dn( ld, e ) ) == -1 )
297 ldap_perror( ld, "ldap_delete" );
302 printf( "\t%s removed\n", ldap_get_dn( ld, e ) );
projects / openldap / blob