1 /* add.c - ldap backend add function */
3 /* This work is part of OpenLDAP Software <http://www.openldap.org/>.
5 * Copyright 1999-2003 The OpenLDAP Foundation.
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted only as authorized by the OpenLDAP
12 * A copy of this license is available in the file LICENSE in the
13 * top-level directory of the distribution or, alternatively, at
14 * <http://www.OpenLDAP.org/license.html>.
17 * This work was initially developed by the Howard Chu for inclusion
18 * in OpenLDAP Software and subsequently enhanced by Pierangelo
21 /* This is an altered version */
23 * Copyright 1999, Howard Chu, All rights reserved. <hyc@highlandsun.com>
25 * Permission is granted to anyone to use this software for any purpose
26 * on any computer system, and to alter it and redistribute it, subject
27 * to the following restrictions:
29 * 1. The author is not responsible for the consequences of use of this
30 * software, no matter how awful, even if they arise from flaws in it.
32 * 2. The origin of this software must not be misrepresented, either by
33 * explicit claim or by omission. Since few users ever read sources,
34 * credits should appear in the documentation.
36 * 3. Altered versions must be plainly marked as such, and must not be
37 * misrepresented as being the original software. Since few users
38 * ever read sources, credits should appear in the documentation.
40 * 4. This notice may not be removed or altered.
44 * Copyright 2000, Pierangelo Masarati, All rights reserved. <ando@sys-net.it>
46 * This software is being modified by Pierangelo Masarati.
47 * The previously reported conditions apply to the modified code as well.
48 * Changes in the original code are highlighted where required.
49 * Credits for the original code go to the author, Howard Chu.
56 #include <ac/string.h>
57 #include <ac/socket.h>
60 #include "back-ldap.h"
67 struct ldapinfo *li = (struct ldapinfo *) op->o_bd->be_private;
73 struct berval mdn = { 0, NULL };
76 #ifdef LDAP_BACK_PROXY_AUTHZ
77 LDAPControl **ctrls = NULL;
78 int rc = LDAP_SUCCESS;
79 #endif /* LDAP_BACK_PROXY_AUTHZ */
82 LDAP_LOG( BACK_LDAP, ENTRY, "ldap_back_add: %s\n", op->o_req_dn.bv_val, 0, 0 );
83 #else /* !NEW_LOGGING */
84 Debug(LDAP_DEBUG_ARGS, "==> ldap_back_add: %s\n", op->o_req_dn.bv_val, 0, 0);
85 #endif /* !NEW_LOGGING */
87 lc = ldap_back_getconn(op, rs);
88 if ( !lc || !ldap_back_dobind( lc, op, rs ) ) {
93 * Rewrite the add dn, if needed
95 dc.rwmap = &li->rwmap;
104 if ( ldap_back_dn_massage( &dc, &op->o_req_dn, &mdn ) ) {
105 send_ldap_result( op, rs );
109 /* Count number of attributes in entry */
110 for (i = 1, a = op->oq_add.rs_e->e_attrs; a; i++, a = a->a_next)
113 /* Create array of LDAPMods for ldap_add() */
114 attrs = (LDAPMod **)ch_malloc(sizeof(LDAPMod *)*i);
116 #ifdef ENABLE_REWRITE
117 dc.ctx = "addDnAttr";
119 for (i=0, a=op->oq_add.rs_e->e_attrs; a; a=a->a_next) {
120 if ( a->a_desc->ad_type->sat_no_user_mod ) {
124 ldap_back_map(&li->rwmap.rwm_at, &a->a_desc->ad_cname, &mapped,
126 if (mapped.bv_val == NULL || mapped.bv_val[0] == '\0') {
130 attrs[i] = (LDAPMod *)ch_malloc(sizeof(LDAPMod));
131 if (attrs[i] == NULL) {
135 attrs[i]->mod_op = LDAP_MOD_BVALUES;
136 attrs[i]->mod_type = mapped.bv_val;
138 if ( a->a_desc->ad_type->sat_syntax ==
139 slap_schema.si_syn_distinguishedName ) {
141 * FIXME: rewrite could fail; in this case
142 * the operation should give up, right?
144 (void)ldap_dnattr_rewrite( &dc, a->a_vals );
147 for (j=0; a->a_vals[j].bv_val; j++);
148 attrs[i]->mod_vals.modv_bvals = ch_malloc((j+1)*sizeof(struct berval *));
149 for (j=0; a->a_vals[j].bv_val; j++)
150 attrs[i]->mod_vals.modv_bvals[j] = &a->a_vals[j];
151 attrs[i]->mod_vals.modv_bvals[j] = NULL;
156 #ifdef LDAP_BACK_PROXY_AUTHZ
157 rc = ldap_back_proxy_authz_ctrl( lc, op, rs, &ctrls );
158 if ( rc != LDAP_SUCCESS ) {
161 #endif /* LDAP_BACK_PROXY_AUTHZ */
163 rs->sr_err = ldap_add_ext(lc->ld, mdn.bv_val, attrs,
164 #ifdef LDAP_BACK_PROXY_AUTHZ
166 #else /* ! LDAP_BACK_PROXY_AUTHZ */
168 #endif /* ! LDAP_BACK_PROXY_AUTHZ */
171 #ifdef LDAP_BACK_PROXY_AUTHZ
173 if ( ctrls && ctrls != op->o_ctrls ) {
177 #endif /* LDAP_BACK_PROXY_AUTHZ */
179 for (--i; i>= 0; --i) {
180 ch_free(attrs[i]->mod_vals.modv_bvals);
184 if ( mdn.bv_val != op->o_req_dn.bv_val ) {
187 #ifdef LDAP_BACK_PROXY_AUTHZ
188 if ( rc != LDAP_SUCCESS ) {
189 send_ldap_result( op, rs );
192 #endif /* LDAP_BACK_PROXY_AUTHZ */
193 return ldap_back_op_result( lc, op, rs, msgid, 1 ) != LDAP_SUCCESS;