1 /* ldapwhoami.c -- a tool for asking the directory "Who Am I?" */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 1998-2006 The OpenLDAP Foundation.
6 * Portions Copyright 1998-2003 Kurt D. Zeilenga.
7 * Portions Copyright 1998-2001 Net Boolean Incorporated.
8 * Portions Copyright 2001-2003 IBM Corporation.
11 * Redistribution and use in source and binary forms, with or without
12 * modification, are permitted only as authorized by the OpenLDAP
15 * A copy of this license is available in the file LICENSE in the
16 * top-level directory of the distribution or, alternatively, at
17 * <http://www.OpenLDAP.org/license.html>.
19 /* Portions Copyright (c) 1992-1996 Regents of the University of Michigan.
20 * All rights reserved.
22 * Redistribution and use in source and binary forms are permitted
23 * provided that this notice is preserved and that due credit is given
24 * to the University of Michigan at Ann Arbor. The name of the
25 * University may not be used to endorse or promote products derived
26 * from this software without specific prior written permission. This
27 * software is provided ``as is'' without express or implied warranty.
30 * This work was originally developed by Kurt D. Zeilenga for inclusion
31 * in OpenLDAP Software based, in part, on other client tools.
38 #include <ac/stdlib.h>
41 #include <ac/socket.h>
42 #include <ac/string.h>
44 #include <ac/unistd.h>
48 #include "lutil_ldap.h"
49 #include "ldap_defaults.h"
57 fprintf( stderr, _("Issue LDAP Who am I? operation to request user's authzid\n\n"));
58 fprintf( stderr, _("usage: %s [options]\n"), prog);
64 const char options[] = ""
65 "d:D:e:h:H:InO:p:QR:U:vVw:WxX:y:Y:Z";
68 handle_private_option( int i )
72 char *control, *cvalue;
74 case 'E': /* whoami extension */
75 if( protocol == LDAP_VERSION2 ) {
76 fprintf( stderr, _("%s: -E incompatible with LDAPv%d\n"),
81 /* should be extended to support comma separated list of
82 * [!]key[=value] parameters, e.g. -E !foo,bar=567
87 if( optarg[0] == '!' ) {
92 control = strdup( optarg );
93 if ( (cvalue = strchr( control, '=' )) != NULL ) {
97 fprintf( stderr, _("Invalid whoami extension name: %s\n"), control );
109 main( int argc, char *argv[] )
116 char *matcheddn = NULL, *text = NULL, **refs = NULL;
118 struct berval *retdata = NULL;
122 tool_init( TOOL_WHOAMI );
123 prog = lutil_progname( "ldapwhoami", argc, argv );
126 protocol = LDAP_VERSION3;
128 tool_args( argc, argv );
130 if( argc - optind > 1 ) {
132 } else if ( argc - optind == 1 ) {
133 user = strdup( argv[optind] );
138 if ( pw_file || want_bindpw ) {
140 rc = lutil_get_filed_password( pw_file, &passwd );
141 if( rc ) return EXIT_FAILURE;
143 passwd.bv_val = getpassphrase( _("Enter LDAP Password: ") );
144 passwd.bv_len = passwd.bv_val ? strlen( passwd.bv_val ) : 0;
148 ld = tool_conn_setup( 0, 0 );
157 if ( assertion || authzid || manageDSAit || noop ) {
158 tool_server_controls( ld, NULL, 0 );
161 rc = ldap_whoami( ld, NULL, NULL, &id );
163 if( rc != LDAP_SUCCESS ) {
164 tool_perror( "ldap_extended_operation", rc, NULL, NULL, NULL, NULL );
172 if ( tool_check_abandon( ld, id ) ) {
173 return LDAP_CANCELLED;
179 rc = ldap_result( ld, LDAP_RES_ANY, LDAP_MSG_ALL, &tv, &res );
181 tool_perror( "ldap_result", rc, NULL, NULL, NULL, NULL );
190 rc = ldap_parse_result( ld, res,
191 &code, &matcheddn, &text, &refs, NULL, 0 );
193 if ( rc == LDAP_SUCCESS ) {
197 if ( rc != LDAP_SUCCESS ) {
198 tool_perror( "ldap_parse_result", rc, NULL, matcheddn, text, refs );
203 rc = ldap_parse_extended_result( ld, res, &retoid, &retdata, 1 );
205 if( rc != LDAP_SUCCESS ) {
206 tool_perror( "ldap_parse_extended_result", rc, NULL, NULL, NULL, NULL );
211 if( retdata != NULL ) {
212 if( retdata->bv_len == 0 ) {
213 printf(_("anonymous\n") );
215 printf("%s\n", retdata->bv_val );
219 if( verbose || ( code != LDAP_SUCCESS ) || matcheddn || text || refs ) {
220 printf( _("Result: %s (%d)\n"), ldap_err2string( code ), code );
222 if( text && *text ) {
223 printf( _("Additional info: %s\n"), text );
226 if( matcheddn && *matcheddn ) {
227 printf( _("Matched DN: %s\n"), matcheddn );
232 for( i=0; refs[i]; i++ ) {
233 printf(_("Referral: %s\n"), refs[i] );
239 ber_memfree( matcheddn );
240 ber_memvfree( (void **) refs );
241 ber_memfree( retoid );
242 ber_bvfree( retdata );
245 /* disconnect from server */
249 return code == LDAP_SUCCESS ? EXIT_SUCCESS : EXIT_FAILURE;